Re: genrsa question how secure is the random creation

2012-12-13 Thread Michael Sierchio
On Tue, Dec 11, 2012 at 8:06 PM, Michael Sierchio wrote: > - Select an interval near the desired size [ 2^1023 + 1^1022 + 1 , 2^1024 - 1 ] > - Sieve out composites divisible by small primes > - Select two probable primes such that (p - q) is reasonably large > (2^100 or so) to defeat the differ

Re: genrsa question how secure is the random creation

2012-12-12 Thread dj
> On Tue, Dec 11, 2012 at 6:27 PM, redpath wrote: >> When using this command >> >> openssl genrsa -out test.pem 2048 >> >> an RSA pair is created. Its not so much I want to know how a pair is >> randomly selected >> but how secure is that random selection. > It depends. In theory, the way entropy

Re: genrsa question how secure is the random creation

2012-12-12 Thread Jeffrey Walton
On Wed, Dec 12, 2012 at 12:39 PM, Salz, Rich wrote: > Until someone breaks the website, spoofs it, buys out the owner, etc. > > Q2.4: Are the numbers available in a secure fashion? > > Yes, since April 2007 you can access the server via https://www.random.org/ > > I should probably note that while

RE: genrsa question how secure is the random creation

2012-12-12 Thread Salz, Rich
Until someone breaks the website, spoofs it, buys out the owner, etc. Q2.4: Are the numbers available in a secure fashion? Yes, since April 2007 you can access the server via https://www.random.org/ I should probably note that while fetching the numbers via secure HTTP would protect them from b

Re: genrsa question how secure is the random creation

2012-12-12 Thread Jeffrey Walton
On Tue, Dec 11, 2012 at 6:27 PM, redpath wrote: > When using this command > > openssl genrsa -out test.pem 2048 > > an RSA pair is created. Its not so much I want to know how a pair is > randomly selected > but how secure is that random selection. It depends. In theory, the way entropy is gathere

Re: genrsa question how secure is the random creation

2012-12-11 Thread Michael Sierchio
On Tue, Dec 11, 2012 at 3:27 PM, redpath wrote: > When using this command > > openssl genrsa -out test.pem 2048 > > an RSA pair is created. Its not so much I want to know how a pair is > randomly selected > but how secure is that random selection. Random number generators are a > series > and thi

Re: genrsa question how secure is the random creation

2012-12-11 Thread Wim Lewis
On 11 Dec 2012, at 3:27 PM, redpath wrote: > an RSA pair is created. Its not so much I want to know how a pair is randomly > selected but how secure is that random selection. Random number generators > are a series and this selection could be followed for brute force deciphering. I think the r

genrsa question how secure is the random creation

2012-12-11 Thread redpath
. -- View this message in context: http://openssl.6102.n7.nabble.com/genrsa-question-how-secure-is-the-random-creation-tp42656.html Sent from the OpenSSL - User mailing list archive at Nabble.com. __ OpenSSL Project