> But  can I use e.g. a 1024 bit key pair with a block size of 116
> byte, that is not depending on the problem shown above, isn't it?!
> What is the security reason, why not to do this?

That would seriously weaken the security properties.

http://en.wikipedia.org/wiki/RSA

Read the section on padding schemes. An attacker than can predict the
plaintext can break the encryption. A 116 byte plaintext may not be
sufficiently unpredictable to preserve the level of security you expect from
a 1,024 bit key. (RSA is 100% deterministic.)

RSA cannot be used securely except by experts (because it has too many
internal weaknesses that must be carefully worked around by the surrounding
system). I strongly urge you to either use a pre-designed scheme around RSA
or to employ an expert. There are simply too many ways you can go wrong.

DS


______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    openssl-users@openssl.org
Automated List Manager                           [EMAIL PROTECTED]

Reply via email to