LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

Relicensing and rebasing LibreOffice

LWN.net Weekly Edition for May 24, 2012

A uTouch architecture introduction

LWN.net Weekly Edition for May 17, 2012

Tasting the Ice Cream Sandwich

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Another update on Fedora infrastructure

Another update on Fedora infrastructure

Posted Aug 19, 2008 17:07 UTC (Tue) by jwb (guest, #15467)
In reply to: Another update on Fedora infrastructure by corbet
Parent article: Another update on Fedora infrastructure 

Why would anyone use DSA keys anyway?  They have serious flaws which the RSA system avoids.
Notably, if you inadvertently sign something using your DSA key and a compromised PRNG, your
key is revealed.

The attraction of DSA keys seems to be simply that RSA was at one time patented.  This seems
like a silly reason today.

(Log in to post comments)

Another update on Fedora infrastructure

Posted Aug 19, 2008 17:27 UTC (Tue) by tialaramex (subscriber, #21167) [Link] 

There's a diversity argument too. If everyone's infrastructure relies on RSA exclusively and
then next week someone finds a serious problem in RSA then you've got a massive disaster.

Which doesn't add up to an argument for DSA, but it does mean it's not enough to say "RSA is
better, we'll just use that". We know that RSA is no /harder/ than the factorisation problem,
but we don't have a proof that it isn't /easier/ perhaps /much easier/. We must have
alternatives, maybe Elliptic Curve or maybe something quite different.

Copyright © 2012, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds