• алсааас [she/they]OP
    link
    fedilink
    English
    3
    edit-2
    7 months ago

    not even rsa4090? (tbh i have no idea about cryptography, any of those terms or what elliptic keys are and why they are better… like why aren’t they the default in GPG?)

    • Toes♀
      link
      fedilink
      English
      77 months ago

      RSA2048 is still commonly used.

      RSA4096 is quite strong still.

      The push towards elliptical curve keys has two main reasons.

      They offer equivalent or better strength for less CPU usage to their RSA counterparts.

      They are more resistant to cryptographic attacks.

      Adoption of EC keys has been slow. Mostly because legacy software has poor support for them. (But legacy stuff has also been known to choke on large RSA keys like 4096)

      Additionally, there’s some controversy over them.

      Search secp256r1 vs secp256k1 to learn more about that.

      The Linux community appears to prefer the k version because the NSA defined the r version.