First I would like to apologize for the long topic subject. Second, for those
who have my public key added to their keyrings, I'm thinking about changing
keys.
Well, to make it short: Which one is the most secure in each case?
– DSA for signing with El Gamal for encrypting, or RSA for both?
– SHA-256 or SHA-512?
– At which strength?
Now for the confusing part which led me to create this topic:
First, sorry for referencing non-free content.
There's an old post [1] on a blog for GNU+Linux Debian administrators which
informs about a serious attack against SHA-1, and the author suggests that,
besides using a stronger SHA, one should use RSA keys.
However, there's a topic [2] on Linux Forums, where a user called JustinT
explains his studies about such subject and also suggests an article written
by himself (it's really long, it even has two parts, but I read it, :D)
JustinT suggests to use DSA for signing with El Gamal for encryption, and he
suggests to use DSA with SHA-256 at a minimum. What can this “minimum”
mean? Does it mean to chose the shortest/smallest strength?
Anyway, what do you think?
[1] https://www.debian-administration.org/users/dkg/weblog/48
[2] http://www.linuxforums.org/forum/security/3515-rsa-versus-dsa.html
Best regards, ADFENO.
Have a nice day.
