EldoS | Feel safer!

Software components for data protection, secure storage and transfer

Downgrade from 1024 to 512 bits

Posted: 09/05/2009 06:37:38
by Kim Prince (Basic support level)
Joined: 09/05/2009
Posts: 1

We have developed a distributed application using PKIBlackBox. We are using key pairs, 1024 bits.

We are considering moving to 512 bits to reduce the processing overhead. The difficulty is that we don't have enough people to replace the keys in all clients at the same time.

Ideally we would modify our code to support '512 or above', and gradually replace all 1024 bit keys over a period of weeks. Would PKIBlackBox support this?

Any alternative approaches/suggestions for a 'smooth transition'?
Posted: 09/05/2009 07:23:59
by Eugene Mayevski (Team)

512 bit keys are insecure and generally not recommended for use.

But in general, if you need to replace the keys, their length doesn't matter. As soon as both sides (the client and the server) know the new key of the other party, everything is ok.

Sincerely yours
Eugene Mayevski



Topic viewed 785 times

Number of guests: 1, registered members: 0, in total hidden: 0


Back to top

As of July 15, 2016 EldoS business operates as a division of /n software, inc. For more information, please read the announcement.

Got it!