Comments on: Generating RSA Key Pairs in Ruby http://stuff-things.net/2009/12/11/generating-rsa-key-pairs-in-ruby/ Paradise is exactly like where you are right now only much, much better… Fri, 08 Jan 2010 19:37:07 +0000 http://wordpress.org/?v=2.9.2 hourly 1 By: Spike http://stuff-things.net/2009/12/11/generating-rsa-key-pairs-in-ruby/comment-page-1/#comment-594 Spike Fri, 08 Jan 2010 19:37:07 +0000 http://stuff-things.net/?p=82#comment-594 Triple DES is considered secure and is currently not due to be phased out until 2030. In my experience DES3 is still much more commonly used than AES to encrypt RSA keys. However, all you need do to use AES is change: cipher = OpenSSL::Cipher::Cipher.new('des3') to cipher = OpenSSL::Cipher::Cipher.new('aes-128-cbc') 'aes-192-cbc' and 'aes-256-cbc' work as well. You can, in fact, use and CBC cipher supported by OpenSSL, but DES3 and AES are the most common and thus portable choices across platforms. Triple DES is considered secure and is currently not due to be phased out until 2030. In my experience DES3 is still much more commonly used than AES to encrypt RSA keys. However, all you need do to use AES is change:

cipher = OpenSSL::Cipher::Cipher.new(‘des3′)

to

cipher = OpenSSL::Cipher::Cipher.new(‘aes-128-cbc’)

‘aes-192-cbc’ and ‘aes-256-cbc’ work as well. You can, in fact, use and CBC cipher supported by OpenSSL, but DES3 and AES are the most common and thus portable choices across platforms.

]]> By: DGM http://stuff-things.net/2009/12/11/generating-rsa-key-pairs-in-ruby/comment-page-1/#comment-593 DGM Fri, 08 Jan 2010 05:20:04 +0000 http://stuff-things.net/?p=82#comment-593 All your examples use des3, but isn't AES supposed to replace it? All your examples use des3, but isn’t AES supposed to replace it?

]]>