What expert considers it a matter of time before 2048 is broken? 2048 is 112-bit...

coppsilgold · 2025-01-09T01:52:40 1736387560

RSA2048 is 112-bit-equivalent symmetric security under currently known methods. Number theory advances may change that. It is hard to imagine any significant advances in the breaking of symmetric cryptography (mathematically-unstructured permutations).

Cryptographically-relevant quantum computers (CRQC's) will also break smaller RSA keys long before (years?) the bigger ones. CRQC's can theoretically halve symmetric cryptography keys for brute force complexity (256-bit key becomes 128-bit for a CRQC cracker).

bluGill · 2025-01-08T18:45:13 1736361913

https://www.keylength.com/en/4/ NIST says 2048 bit RSA is good until 2030. I'm not sure what that means, perhaps that it will be broken considering advances, perhaps just that someone (read governments) who cares to spend 5 years on the problem will break your key.

tptacek · 2025-01-08T20:36:22 1736368582

No, we are not in fact 5 years from breaking RSA-2048.

bluGill · 2025-01-09T13:48:39 1736430519

I have no idea what NIST means when they give 5 years for 2048 bit keys, but in generally I trust them more than some random poster on the internet.

littlestymaar · 2025-01-09T14:19:09 1736432349

Maybe check who you're responding to then ;).

He's not djb but definitely not a “random poster” either.