Keylength - Compare all Methods

In most cryptographic functions, the key length is an important security parameter. Both academic and private organizations provide recommendations and mathematical formulas to approximate the minimum key size requirement for security. Despite the availability of these publications, choosing an appropriate key size to protect your system from attacks remains a headache as you need to read and understand all these papers.

This web site implements mathematical formulas and summarizes reports from well-known organizations allowing you to quickly evaluate the minimum security requirements for your system. You can also easily compare all these techniques and find the appropriate key length for your desired level of protection. The lengths provided here are designed to resist mathematic attacks; they do not take algorithmic attacks, hardware flaws, etc. into account.

Please enable JavaScript to fully utilize this website (Privacy Policy)

Choose a Method

			Lenstra and Verheul Equations (2000)
			Lenstra Updated Equations (2004)
			ECRYPT-CSA Recommendations (2018)
			NIST Recommendations (2020)
			ANSSI Recommendations (2014)
			NSA CNSA Suite (2016)
			Network Working Group RFC3766 (2004)
			BSI Recommendations (2020)

Reference for the comparison

You can enter the year until when your system should be protected and see the corresponding key sizes or you can enter a key/hash/group size and see until when you would be protected.



		bits

Method

Date

Symmetric

Factoring
Modulus

Discrete Logarithm
Key		Group

Elliptic Curve

Hash

[1] Lenstra / Verheul

2024

2113

1696

157

2113

167

177

[2] Lenstra Updated

2024

1507

1756

168

1507

168

[3] ECRYPT

2018 - 2028

128

3072

256

3072

256

[4] NIST

2019 - 2030

112

2048

224

2048

224

[5] ANSSI

2021 - 2030

128

2048

200

2048

256

[6] NSA

256

3072

384

[7] RFC3766

[8] BSI

2023 - 2026

128

3000

250

3000

250

256

All key sizes are provided in bits. These are the minimal sizes for security.


© 2024		BlueKrypt - v 32.3 - May 24, 2020
		Author: Damien Giry Approved by Prof. Jean-Jacques Quisquater Contact:

I would like to thank Prof. Arjen K. Lenstra for his kind authorization and comments.
Surveys of laws and regulations on cryptology: Crypto Law Survey / Digital Signature Law Survey.


Bibliography	[1]	Selecting Cryptographic Key Sizes, Arjen K. Lenstra and Eric R. Verheul, Journal Of Cryptology, vol. 14, p. 255-293, 2001.
	[2]	Key Lengths, Arjen K. Lenstra, The Handbook of Information Security, 06/2004.
	[3]	Algorithms, Key Size and Protocols Report (2018), H2020-ICT-2014 – Project 645421, D5.4, ECRYPT-CSA, 02/2018.
	[4]	Recommendation for Key Management, Special Publication 800-57 Part 1 Rev. 5, NIST, 05/2020.
	[5]	Mécanismes cryptographiques - Règles et recommandations, Rev. 2.03, ANSSI , 02/2014.
	[6]	Commercial National Security Algorithm, National Security Agency (NSA), 01/2016.
	[7]	Determining Strengths for Public Keys Used for Exchanging Symmetric Keys, RFC 3766, H. Orman and P. Hoffman, 04/2004.
	[8]	Cryptographic Mechanisms: Recommendations and Key Lengths, TR-02102-1 v2020-01, BSI, 03/2020.