To: BugTraq Subject: 1024-bit RSA keys in danger of compromise Date: Mar 24 2002 1:38AM Author: Lucky Green [shamrock@cypherpunks.to] As those of you who have discussed RSA keys size requirements with me over the years will attest to, I always held that 1024-bit RSA keys could not be factored by anyone, including the NSA, unless the opponent had devised novel improvements to the theory of factoring large composites unknown in the open literature. I considered this to be possible, but highly unlikely. In short, I believed that users' desires for keys larger than 1024-bits were mostly driven by a...