[LACNIC/Seguridad] Fwd: RSA-786 fractorized
Francisco Arias
francisco en arias.com.mx
Jue Ene 7 13:27:10 BRST 2010
http://eprint.iacr.org/2010/006.pdf
"On December 12, 2009, we factored the 768-bit, 232-digit number RSA-768 by
the number
field sieve (NFS, [19]). The number RSA-768 was taken from the now obsolete
RSA Challenge
list [37] as a representative 768-bit RSA modulus (cf. [36]). This result is
a record for factoring
general integers. Factoring a 1024-bit RSA modulus would be about a thousand
times harder,
and a 768-bit RSA modulus is several thousands times harder to factor than a
512-bit one.
Because the first factorization of a 512-bit RSA modulus was reported only a
decade ago
(cf. [7]) it is not unreasonable to expect that 1024-bit RSA moduli can be
factored well within
the next decade by an academic effort such as ours or the one in [7]. Thus,
it would be prudent
to phase out usage of 1024-bit RSA within the next three to four years."
Saludos,
Francisco.
---------- Forwarded message ----------
From: Lutz Donnerhacke <lutz en iks-jena.de>
Date: 2010/1/7
Subject: [dnssec-deployment] RSA-786 fractorized
To: DNSSEC deployment <dnssec-deployment en shinkuro.com>
A 786bit composite number was factorized using 80 CPUs over half an year.
Please check if you are using such keys (as ZSKs?) and upgrade to 1024 asap.
My personal opinion is to use 1024 bit keys for both ZSK and KSK and limit
the lifetime to about a year for the KSK.
http://eprint.iacr.org/2010/006.pdf
http://www.iks-jena.de/Ueber-uns/News/RSA-786-gebrochen
#############################################################
This message is sent to you because you are subscribed to
the mailing list <dnssec-deployment en shinkuro.com>.
To unsubscribe, E-mail to: <dnssec-deployment-off en shinkuro.com>
A public archive is available here: <
http://mail.shinkuro.com:8100/Lists/dnssec-deployment/>
and older material is at
<http://mail.shinkuro.com:8100/Lists/dnssec-deployment-archive/>
------------ próxima parte ------------
Se ha borrado un adjunto en formato HTML...
URL: <https://mail.lacnic.net/pipermail/seguridad/attachments/20100107/a3c9a10e/attachment.html>
Más información sobre la lista de distribución Seguridad