Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-6561126

keytool should use larger default keysize for keypairs

    Details

    • Type: Enhancement
    • Status: Resolved
    • Priority: P3
    • Resolution: Fixed
    • Affects Version/s: 7
    • Fix Version/s: 7
    • Component/s: security-libs
    • Subcomponent:
    • Resolved In Build:
      b72
    • CPU:
      sparc
    • OS:
      solaris_10

      Description

      Recent cryptanalysis has shown weaknesses (though not yet broken) in 1024 bit RSA keys: see http://www.theregister.com/2007/05/22/unreadable_writing_is_on_the_wall/

      We should seriously consider increasing the keytool default keysize for generating keypairs
      to 2048 for JDK 7. For DSA, this will require support for keys larger than 1024 -
      see 6560751.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                weijun Weijun Wang
                Reporter:
                mullan Sean Mullan
              • Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:
                  Imported:
                  Indexed: