Require minimum key size for RSA keys #854

lcobucci · 2022-07-24T22:37:19Z

As stated on JWA 3.3, RSA keys need to be a least 2048 long:

Digital Signature with RSASSA-PKCS1-v1_5

This section defines the use of the RSASSA-PKCS1-v1_5 digital
signature algorithm as defined in Section 8.2 of RFC 3447 [RFC3447]
(commonly known as PKCS #1), using SHA-2 [SHS] hash functions.

A key of size 2048 bits or larger MUST be used with these algorithms.

lcobucci · 2022-07-24T22:37:32Z

@Slamdunk we missed this one too 😞

Slamdunk · 2022-07-27T09:46:10Z

Ok.

I see the standard doesn't tell anything about ECDSA keys, but I would like to introduce a minimum key requirement there too, which would be 224 bits to have the same strength of an RSA key length of 2048 bits.

WDYT?

lcobucci added Minor BC-break Security labels Jul 24, 2022

lcobucci added this to the 4.2.0 milestone Jul 24, 2022

lcobucci mentioned this issue Jul 24, 2022

Does not enforce key lengths required by RFC 7518 thephpleague/oauth2-server#1286

Closed

lcobucci added the Improvement label Jul 24, 2022

lcobucci changed the title ~~Verify minimum key size for RSA keys~~ Require minimum key size for RSA keys Jul 24, 2022

Slamdunk mentioned this issue Jul 27, 2022

Require minimum key size for OpenSSL keys #855

Merged

lcobucci closed this as completed in #855 Aug 5, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Require minimum key size for RSA keys #854

Require minimum key size for RSA keys #854

lcobucci commented Jul 24, 2022 •

edited

lcobucci commented Jul 24, 2022

Slamdunk commented Jul 27, 2022 •

edited

Require minimum key size for RSA keys #854

Require minimum key size for RSA keys #854

Comments

lcobucci commented Jul 24, 2022 • edited

lcobucci commented Jul 24, 2022

Slamdunk commented Jul 27, 2022 • edited

lcobucci commented Jul 24, 2022 •

edited

Slamdunk commented Jul 27, 2022 •

edited