|
From: | Benja Fallenstein |
Subject: | Re: [Gzz] One-time signature possibilities |
Date: | Mon, 12 May 2003 20:51:35 +0200 |
User-agent: | Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.3) Gecko/20030430 Debian/1.3-5 |
Tuomas Lukka wrote:
On Mon, May 12, 2003 at 06:55:16PM +0200, Benja Fallenstein wrote:Benja Fallenstein wrote:If we use only SHA-1, not Tiger, some of our options are: - Store ~3KB, verify ~160 hashes, ~.8 ms - Store ~1.5KB, verify ~240 hashes, ~1.2ms - Store ~840 bytes, verify ~600 hashes, ~3ms - Store ~440 bytes, verify ~5100 hashes, ~25.5ms- Store ~8KB, verify ~160+192 hashes, ~2ms - Store ~4KB, verify ~240+290 hashes, ~3ms - Store ~2KB, verify ~600+720 hashes, ~7ms - Store ~1KB, verify ~5100+6100 hashes, ~62msI think the 2KB, 7ms signature is probably our best bet...How much space do other types of DS algorithms require?
Non-one-time? DSA seems to have signatures of 370 bits and keys of 1024 bits are recommended; i.e. about 46 bytes per sig and 128 bytes per key. In other words, negligible. I don't know about RSA, but assume that the situation is similar.
- Benja
[Prev in Thread] | Current Thread | [Next in Thread] |