On 30-09-2010 18:32, Thor Lancelot Simon wrote:
> On Thu, Sep 30, 2010 at 05:18:56PM +0100, Samuel Neves wrote:
>> One solution would be to use 2048-bit 4-prime RSA. It would maintain the
>> security of RSA-2048, enable the reusing of the modular arithmetic units
>> of 1024 bit VLSI chips and keep ECM factoring at bay. The added cost
>> would only be a factor of ~2, instead of ~8.
> This is a neat idea!  But it means changing the TLS standard, yes?

IIRC, multi-prime RSA is already supported in standards, but not in
practice (read: OpenSSL):


Best regards,
Samuel Neves

The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majord...@metzdowd.com

Reply via email to