On 26/08/12 16:51, Andrey Kulikov wrote:
> Talking about the bit-length of the public key data is not particularly
> helpful because it depends on whether it is in compressed format or not.

Sorry, but size of public key does not depends on size of it's representation. It can be compressed, Base64 encoded, etc., but it does not change size of original data.
Well, if you are not talking about the bit length of a particular representation, then it is no longer clear what you mean by the "size of the original data". What size are you referring to if not the size of a representation? Perhaps you mean the entropy (as per Claude Shannon - Information Theory). This is the only invariant I can think of in terms of expressing the "size" of the original data. In which case the number of bits would be the same as the compressed representation.

As I said. Its not particularly helpful to talk about the bit-length of the public key data.


x509 command output was mentioned only for example.
The aim was is to understand, why OpenSSL (and not only) consider size of something as twice as less of actual size, while displaying data itself on next line of proper size.

As I said before it is convention when talking about a key size to mean the number of bits in the order (i.e. the size of the private key). Perhaps the output is a little misleading if you are unfamiliar with the convention.....but the same could be said about a lot of stuff in the crypto world!! Personally, I think the output is reasonable.


Title for this data is 'Public key', not 'Size of private key, public key in this certificate related to'.
What trows my programmer's ming into cognitive dissonance.

Is it bug, feature, or [yet] hidden convention?

______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
Development Mailing List                       openssl-dev@openssl.org
Automated List Manager                           majord...@openssl.org

Reply via email to