This article introduces a hotfix that increases the length of RSA keys for Active Directory Rights Management Services (AD RMS) to 2048 bits on a Windows Server 2008 R2-based or Windows Server 2008-based RMS server. Currently, AD RMS uses RSA keys that are 1024 bits long for encryption.

RSA-2048 has 617 decimal digits (2,048 bits). It is the largest of the RSA numbers and carried the largest cash prize for its factorization, $200,000. The RSA-2048 may not be factorizable for many years to come, unless considerable advances are made in integer factorization or computational power in the near future. RSA Security thought that 1024-bit keys were likely to become crackable by 2010,; as of 2020 it's not known that it has been, but minimum recommendations have moved to at least 2048 bits. It is generally presumed that RSA is secure if n is sufficiently large, outside of quantum computing. Jun 18, 2013 · The NIST speculates that 2048 bit keys will be valid up to about the year 2030, so that implies that any code you sign with a 2048 bit key today will have to be re-signed with a longer key in the year 2029. You would do that re-signing in the 2048 bit twilight period while you still trust the old signature. 4096 in practice As an SSL Client, you have to perform an RSA encryption operation using a very short exponent (ex: 17 bits), which is way easier to compute than the corresponding RSA decryption operation required by the server, which uses a long exponent (ex: 2048 bits). The RSA-2048 encryption key typical for Cryptowall 3.0 has been reported to strike users’ computers and display a ransomware message. Thus, the threat is also dubbed Ransomware RSA-2048 or may be referred as RSA-2048 virus.

## The following example creates an asymmetric key named PacificSales09 by using the RSA_2048 algorithm, and protects the private key with a password. CREATE ASYMMETRIC KEY PacificSales09 WITH ALGORITHM = RSA_2048 ENCRYPTION BY PASSWORD = ''; GO

Reading an RSA key pair. To perform RSA encryption or decryption, you will need an RSA key. In the case of an RSA-2048 decryption, you will need a 2048-bit RSA key. More information on generating an RSA key pair is in our article on RSA key pair generation. For now, we assume you have already generated one or already have one in your possession.

### Nov 24, 2017 · In case you're curious where we got the idea of 2048-bit keys being safe to use until 2030, check out the NIST Special Publication 800-57 Part1. In Table 2 of that document, it says 2048-bit RSA keys are roughly equivalent to a Security Strength of 112.

Select RSA and RSA. Please select what kind of key you want: (1) RSA and RSA (default) (2) DSA and Elgamal (3) DSA (sign only) (4) RSA (sign only) Your selection? 1 RSA keys may be between 1024 and 4096 bits long. and select 2048-bit (as Gnuk Token only suppurt this). What keysize do you want? (2048) Requested keysize is 2048 bits