ou trust, use the upper boundary of 3072 bit or
round up to 4096 bits.
--
David Dahlberg
Fraunhofer FKIE, Dept. Communication Systems (KOM) | Tel: +49-228-9435-845
Fraunhoferstr. 20, 53343 Wachtberg, Germany| Fax: +49-228-856277
utokey_analysis.pdf
The HTTPS-based scheme is at least able to link a rough time constraint
to a PKI (which autokey is not even able to do) and it follows the
general design approach of OpenNTPd: Being simple and good enough for
most use cases.
--
David Dahlberg
Fraunhofer FKIE, Dept. Com
