DSA是基于整數(shù)有限域離散對數(shù)難題的，DSA的一個重要特點(diǎn)是兩個素?cái)?shù)公開，這樣，當(dāng)使用別人的p和q時，即使不知道私鑰，你也能確認(rèn)它們是否是隨機(jī)產(chǎn)生的，還是作了手腳。RSA算法卻做不到。

RSA算法在網(wǎng)絡(luò)容易實(shí)現(xiàn)密鑰管理,便進(jìn)行數(shù)字簽名,算法復(fù)雜,加/解速度慢,采用非對稱加密

DSA = Digital Signature Algorithm. based on discrete logarithms computation.

DES = Digital Encryption Standard. Obsolete standard.

What is DCE?

DSA 用于簽名，而 RSA 可用于簽名和加密。

DSA is faster in *signing*, but slower in *verifying*.

A DSA key of the same strength as RSA (1024 bits) generates a smaller signature.

An RSA 512 bit key has been cracked, but only a 280 DSA key.

It doesn’t matter because with Ssh only authentication is done using RSA or DSA algorithm, and then the “rest” is encoded using a (uh, was it block?) cipher like IDEA, DES, Blowfish, etc, etc after the authentication is done.

While SSH2 can use either DSA or RSA keys, SSH1 cannot. Ssh2 will also not use patented cypers like IDEA.

Filed under: System — Tags: cryptography — Commen

RSA的安全性一直未能得到理論上的證明。 RSA的安全性依賴于大數(shù)分解。公鑰和私鑰都是兩個大素?cái)?shù)（ 大于 100個十進(jìn)制位）的函數(shù)。據(jù)猜測，從一個密鑰和密文推斷出明文的難度等同于分解兩個大素?cái)?shù)的積。

cc

收藏 海報(bào)分享