> But can I use e.g. a 1024 bit key pair with a block size of 116 > byte, that is not depending on the problem shown above, isn't it?! > What is the security reason, why not to do this?
That would seriously weaken the security properties. http://en.wikipedia.org/wiki/RSA Read the section on padding schemes. An attacker than can predict the plaintext can break the encryption. A 116 byte plaintext may not be sufficiently unpredictable to preserve the level of security you expect from a 1,024 bit key. (RSA is 100% deterministic.) RSA cannot be used securely except by experts (because it has too many internal weaknesses that must be carefully worked around by the surrounding system). I strongly urge you to either use a pre-designed scheme around RSA or to employ an expert. There are simply too many ways you can go wrong. DS ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
