Amazon SES 總算支援 2048 bits RSA key 了
source link: https://blog.gslin.org/archives/2021/10/01/10360/amazon-ses-%e7%b8%bd%e7%ae%97%e6%94%af%e6%8f%b4-2048-bits-rsa-key-%e4%ba%86/
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
Amazon SES 總算支援 2048 bits RSA key 了
Amazon SES 總算是支援 2048 bits RSA key 了:「Amazon SES now supports 2048-bit DKIM keys」。
然後講一些幹話... 隔壁微軟早在 2019 年就支援 2048 bits RSA key 了:
Until now, Amazon SES supported a DKIM key length of 1024-bit, which is the current industry standard.
另外用 ECC 演算法的一直都沒進 standard,像是已經先 book 了 RFC 8463 位置的 Ed25519,在 draft 狀態放好久了:「A New Cryptographic Signature Method for DomainKeys Identified Mail (DKIM)」,還有用 ECDSA 的「Defining Elliptic Curve Cryptography Algorithms for use with DKIM」也是放著,不知道是卡到什麼東西,可能是專利?
Related
GCP 推出 Cloud HSM (beta)
這算是 Google Cloud Platform 在補產品線,讓那些有強制使用 HSM 的需求的應用 (通常是遇到一定要 FIPS 140-2 的規範) 可以搬上雲端:「Introducing Cloud HSM beta for hardware crypto key security」。 從圖片上可以看到 LiquidSecurity,應該是「LiquidSecurity® General Purpose HSM Adapters and Appliances」這個產品: 如同 AWS 的 CloudHSM 服務,GCP 的 Cloud HSM 也是提供 FIPS 140-2 Level 3: Cloud HSM allows you to host encryption keys and…
August 21, 2018In "Cloud"
CloudFront 宣佈支援 ECDSA 的 Certificate
Amazon CloudFront 宣佈支援 ECDSA 的 certificate:「Amazon CloudFront now supports ECDSA certificates for HTTPS connections to viewers」。 用主要是讓 certificate 更小,讓 HTTPS 建立時的過程更快 (包括了傳輸的速度與計算的速度): As a result, conducting TLS handshakes with ECDSA certificates requires less networking and computing resources making them a good option for IoT devices that have limited storage and…
July 16, 2021In "AWS"
AWS SES 支援 DKIM
DKIM 全名 DomainKeys Identified Mail,是透過數位簽名技術確保 E-mail 的寄件人不是被偽造的,對於防止透過電子郵件網路釣魚是個還蠻有效的技術。 本來透過 AWS SES 寄信,要自己處理 DKIM 簽名的部份,不過今天 AWS 宣佈這項功能內建進 AWS SES:「Simple Email Service - Easy DomainKeys Identified Mail (DKIM) Support」。 於是,現在用 AWS SES 的人要 DKIM 只要把 SES 提供的 DNS record 設上去就可以了,比起之前自己得在 Sendmail 或是 Postfix 上弄一堆東西方便不少。
July 18, 2012In "AWS"
Author Gea-Suan LinPosted on October 1, 2021Categories AWS, Cloud, Computer, Mail, Murmuring, Network, Privacy, Security, ServiceTags 1024, 2048, algorithm, amazon, aws, cloud, cryptography, curve, dkim, ecc, elliptic, email, ietf, key, length, mail, rfc, rsa, service, ses, simple, standard Leave a Reply Cancel reply
Your email address will not be published. Required fields are marked *
Comment
Name *
Email *
Website
Notify me of follow-up comments by email.
Notify me of new posts by email.
Post navigation
Recommend
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK