https://www.linuxjournal.com/tag/openssh en https://www.linuxjournal.com/content/elliptic-curve-cryptography <div data-history-node-id="1084447" class="layout layout--onecol"> <div class="layout__region layout__region--content"> <div class="field field--name-field-node-image field--type-image field--label-hidden field--item"> <img src="https://www.linuxjournal.com/sites/default/files/nodeimage/story/11264f5.jpg" width="480" height="480" alt="" typeof="foaf:Image" class="img-responsive" /></div> <div class="field field--name-node-author field--type-ds field--label-hidden field--item">by <a title="View user profile." href="https://www.linuxjournal.com/users/joe-hendrix" lang="" about="https://www.linuxjournal.com/users/joe-hendrix" typeof="schema:Person" property="schema:name" datatype="" xml:lang="">Joe Hendrix</a></div> <div class="field field--name-body field--type-text-with-summary field--label-hidden field--item"><p> When it comes to public key cryptography, most systems today are still stuck in the 1970s. On December 14, 1977, two events occurred that would change the world: Paramount Pictures released <em>Saturday Night Fever</em>, and MIT filed the patent for RSA. Just as <em>Saturday Night Fever</em> helped popularize disco through its choreography and soundtrack, RSA helped popularize cryptography by allowing two parties to communicate securely without a shared secret. </p> <p> Public key techniques, such as RSA, have revolutionized cryptography and form the basis for Web site encryption via SSL/TLS, server administration via SSH, secure e-mail and IP encryption (IPsec). They do this by splitting the shared secret key used in traditional cryptography into two parts: a public key for identifying oneself and a secret key for proving an identity electronically. Although the popularity of disco has waned, most Web sites today that use encryption still are using RSA. </p> <p> Since the 1970s, newer techniques have been developed that offer better security with smaller key sizes than RSA. One major breakthrough is the development of cryptography based on the mathematical theory of elliptic curves, called ECC (Elliptic Curve Cryptography). Although ECC has a reputation for being quite complex, it has been integrated into popular open-source cryptographic software including OpenSSH and OpenSSL, and it's not inherently any more difficult to use than RSA. In this article, I describe ECC and show how it can be used with recent versions of OpenSSH and OpenSSL. </p> <p> Not all cryptographic algorithms are equal. For a fixed key or output length, one algorithm may provide much more security than another. This is particularly true when comparing different types of algorithms, such as comparing public and symmetric key algorithms. To help make sense of this, the National Institute of Standards and Technology (NIST) reviews the academic literature on attacking cryptographic algorithms and makes recommendations on the actual security provided by different algorithms (see Table 1 from 2011). </p></div> <div class="field field--name-node-link field--type-ds field--label-hidden field--item"> <a href="https://www.linuxjournal.com/content/elliptic-curve-cryptography" hreflang="und">Go to Full Article</a> </div> </div> </div> Mon, 08 Apr 2013 15:10:49 +0000 Joe Hendrix 1084447 at https://www.linuxjournal.com