SSH supports two signature algorithms for key pairs: RSA and DSA. Which is preferred, if any? For RSA, what is the minimum acceptable key length?
security ssh rsa cryptography – SSH Keypair Generation: RSA or DSA?
cryptographyrsaSecurityssh
Related Topic
- Git for Windows – How to Tell Git Where to Find Private RSA Key
- Ssh – How to use openssh sftp command with a RSA/DSA key specified from the command line
- Security – Our security auditor is an idiot. How to give him the information he wants
- Security – Possible to change email address in keypair
- Ssh – the current need for ssh dsa host keys
- Ssh – How to use DSA key pairs instead of RSA
Best Answer
RSA is generally preferred (now that the patent issue is over with) because it can go up to 4096 bits, where DSA has to be exactly 1024 bits (in the opinion of
ssh-keygen
). 2048 bits isssh-keygen
's default length for RSA keys, and I don't see any particular reason to use shorter ones. (The minimum possible is 768 bits; whether that's "acceptable" is situational, I suppose.)