[dns-operations] EdDSA status ?
Mukund Sivaraman
muks at mukund.org
Mon Jun 4 15:20:49 UTC 2018
On Mon, Jun 04, 2018 at 10:30:25AM -0400, Viktor Dukhovni wrote:
>
>
> > On Jun 4, 2018, at 9:13 AM, Chris Thompson <cet1 at cam.ac.uk> wrote:
> >
> > I am sure there are people who are sticking with RSA, hopefully
> > increasing the modulus size from time to time
>
> Or just relying on "sufficiently" frequent ZSK rotation.
+1. RSA ZSKs don't always need the same level of key sizes that
long-lived RSA keys (in applications such as PGP) do. It depends on the
operational usage, but a shorter RSA key today is not necessarily bad if
its complete lifetime of usage is a month.
Mukund
More information about the dns-operations
mailing list