diff options
author | lloyd <[email protected]> | 2012-07-27 17:30:13 +0000 |
---|---|---|
committer | lloyd <[email protected]> | 2012-07-27 17:30:13 +0000 |
commit | 4d0008edca9d3c0a119518e7d9b49c81d7dbe33c (patch) | |
tree | c359b14f9f0a0a495fea6eb241cb082fd0dc0717 /doc/relnotes/1_11_1.rst | |
parent | 16ccb3c130ad29aee2e640d498606314ac486f55 (diff) |
Add Public_Key::estimated_strength which gives an approximation of how
hard that key is to break.
Use it in cert path validation, rejecting keys with estimated strength
less than 80 bits.
Diffstat (limited to 'doc/relnotes/1_11_1.rst')
-rw-r--r-- | doc/relnotes/1_11_1.rst | 13 |
1 files changed, 13 insertions, 0 deletions
diff --git a/doc/relnotes/1_11_1.rst b/doc/relnotes/1_11_1.rst new file mode 100644 index 000000000..07b1fc62e --- /dev/null +++ b/doc/relnotes/1_11_1.rst @@ -0,0 +1,13 @@ +Version 1.11.1, Not Yet Released +^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ + +A new function :cpp:func:`Public_Key::estimated_strength` returns +an estimate for the upper bound of the strength of the key. For +instance for an RSA key, it will return an estimate of how many +operations GNFS would take to factor the key. + +A new :cpp:class:`Path_Validation_Result` code has been added +``SIGNATURE_METHOD_TOO_WEAK``. By default signatures created with keys +below 80 bits of strength (as estimated by ``estimated_strength``) are +rejected. This level can be modified using a parameter to the +:cpp:class:`Path_Validation_Restrictions` constructor. |