Longer key lengths are better, but only up to a point. AES will have 128-bit, 192-bit, and 256-bit key lengths. This is far longer than needed for the foreseeable future. In fact, we cannot even imagine a world where 256-bit brute force searches are possible. It requires some fundamental breakthroughs in physics and our understanding of the universe. For public-key cryptography, 2048-bit keys have same sort of property; longer is meaningless.
cryptography engineering schneier.rar
Apologies to those who know this. I suspect some comments here are read by managers less adept at techology who non-the-less may think it worthwhile to boast strong cryptography rather than a firewall or IDS upgrade. Indeed, reports to senior management that boast XXX-bit cryptography look more effective than reports that discuss an upgrade to version 8 of something. 2ff7e9595c
Comments