[RFC 3/4] FIT: add FIT image support

Marc Kleine-Budde mkl at pengutronix.de
Fri Mar 13 09:06:11 PDT 2015

On 03/13/2015 04:54 PM, Jean-Christophe PLAGNIOL-VILLARD wrote:
>>> if you can break rsa4096, the chance you can break ECC are high too
>> If you want to open the box, today you would probably not break
>> rsa2048/sha1 (unless you have huge calculation power) but look for
>> implementation weaknesses, like bugs or side channel attacks.
> I alredy see it done on rsa1024 few years ago, today rs2048 is supposedly
> secured but as you hw may have to run for 10 years rs2048/sha1 is considered not
> strong enough

Some thoughts on 2048 vs. 4096:

While sha1 is considered broken.


Pengutronix e.K.                  | Marc Kleine-Budde           |
Industrial Linux Solutions        | Phone: +49-231-2826-924     |
Vertretung West/Dortmund          | Fax:   +49-5121-206917-5555 |
Amtsgericht Hildesheim, HRA 2686  | http://www.pengutronix.de   |

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: OpenPGP digital signature
URL: <http://lists.infradead.org/pipermail/barebox/attachments/20150313/e66bfb95/attachment.sig>

More information about the barebox mailing list