The wiki currently says: Modulus length. (The length of the RSA modulus for the root CA public and private keys. Note that although the Mozilla CA certificate policy does not specify a minimum modulus length, in practice a modulus length of less than 2048 bits is cause for concern.) [What is the corresponding measure for ECC certificates?]
What does "is cause for concern" mean when the majority of the certificates in our list are 1024 bits? (I think that is still true....) As for the ECC question: 256 bits is equivalent to 128 bits of symmetric strength, as in AES-128. _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
