Issue No. 03 - May/June (2009 vol. 13)
pp: 96, 94-95
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MIC.2009.64
Stephen Farrell , Trinity College Dublin
Many Internet security mechanisms depend on the use of cryptographic algorithms for various forms of authentication and confidentiality. Even when well-known and standardized cryptographic algorithms are used in well-known protocols, some parameters must be specified, the most important of which are usually algorithm identifiers and key or hash-output lengths. The author reviews some recent key length recommendations and compares those to current usage. He raises some issues that come up once we start to do the updates called for by various cryptographic experts and authorities who've made recommendations on this topic — some of which call for widespread changes to occur in 2010.
cryptographic key length, key size, key update, practical security, security, peering
Stephen Farrell, "Keys Don't Grow in Threes", IEEE Internet Computing, vol. 13, no. , pp. 96, 94-95, May/June 2009, doi:10.1109/MIC.2009.64