nega at nega at
Tue Jan 18 08:16:35 PST 2005

Joerg Sonnenberger writes:
 > On Tue, Jan 18, 2005 at 01:36:43AM -0500, Kris Maglione wrote:
 > > So, what about "(b) RSA is just a better protocol [(algorighm)]"?
 > > I've read a few pieces which recommend RSA over DSA, although most 
 > > crypto programs (OpenSSL/SSH etc.) say RSA is depricated/a last resort. 
 > > Any insights?
 > The OpenSSL and OpenSSH guys are right. DSA is stronger than RSA, as
 > long as it is done correctly. But since it is harder to implement DSA
 > correctly, a lot of fools might suggest avoiding it :)
 > Joerg

When considering the "strength" of an algorithm, take in to acount
that DSA was never intended for encryption and was selected by a
standards body (NIST) under less than "open competition".

A decent FAQ with some good refrences in it can be found at

Summary of the FAQ: DSA is as secure as anyother "unbroken" signature
algorithm. DSA is faster at key generation and signing. RSA is faster
at verification. So, consider your application when choosing the

More information about the Users mailing list