rsa/rsa_lib.c: make RSA_security_bits multi-prime aware. (0122add6) · Commits · CYBER - Cyber Security / TS 103 523 MSP / ETS / ETS OpenSSL

Commit 0122add6 authored Nov 24, 2017 by

Andy Polyakov

rsa/rsa_lib.c: make RSA_security_bits multi-prime aware.



Multi-prime RSA security is not determined by modulus length alone, but
depends even on number of primes. Too many primes render security
inadequate, but there is no common amount of primes or common factors'
length that provide equivalent secuity promise as two-prime for given
modulus length. Maximum amount of permitted primes is determined
according to following table.

   <1024 | >=1024 | >=4096 | >=8192
   ------+--------+--------+-------
     2   |   3    |   4    |   5

Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/4791)

parent 83ccead4

Hide whitespace changes

Inline Side-by-side

Please register or to comment