Hy,
>thanks a lot. but i'm still confused of the cipher strength and
>key length. i always think 40-bit should be the key length of
>symmetric cipher algorithm and 512-bit is the key length of
>asymmetric cipher algorithm.
It's just.
>40-bit data encryption aglorithm
>is always corresponding to 512-bit certificate, and 128-bit
>to 1024/2048-bit. is that right?
No, the certificate is independent of the symetric key-length. You can have
a server with a 512 bits certificate which used 128 bits symetric-key, or a
server with a 2048 bits certificate which used 40 bits symetric-key. It's
just a question of configuration of the server and the version (support
crypto 128 bits or No).
--
Ludovic FLAMENT
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
