Security/Guidelines/Key Management: Difference between revisions

Jump to navigation Jump to search

Security/Guidelines/Key Management (view source)

Revision as of 21:08, 23 October 2014

351 bytes added ,  23 October 2014
→‎User Key
(Add definition of bits of security)
Line 89: Line 89:
=== Protection ===
=== Protection ===
==== User Key ====
==== User Key ====
As SSH keys are rarely renewed the minimum recommended settings are higher than other keys. If you follow a strict key renewal period of '''less than 2 years''', it is reasonable to use RSA 2048 bits or ECDSA 224 bits keys.
* Protected by strong passphrase.
* Never copied to another system than your own workstation/personal physical disks/tokens.
==== Machine Key ====
==== Machine Key ====
When SSH keys are necessary for automation between systems, it is reasonable to use passphrase-less keys.
When SSH keys are necessary for automation between systems, it is reasonable to use passphrase-less keys.
Ulfr
Confirmed users
529

edits

Retrieved from "https://wiki.mozilla.org/Special:MobileDiff/1027712"

Navigation menu