book

Mastering Linux Security and Hardening - Second Edition

by Donald A. Tevault

February 2020

Intermediate to advanced

666 pages

15h 45m

English

Packt Publishing

Read now

Unlock full access

Content preview from Mastering Linux Security and Hardening - Second Edition

Configuring Secure Shell with strong encryption algorithms

As I mentioned previously, the current set of NIST recommendations, the Commercial National Security Algorithm Suite (CNSA Suite), involves using stronger algorithms and longer keys than what we needed to use previously. I'll summarize the new recommendations here in this table:

Algorithm	Usage
RSA, 3,072 bits or larger	Key establishment and digital signatures
Diffie-Hellman (DH), 3,072 bits or larger	Key establishment
ECDH with NIST P-384	Key establishment
ECDSA with NIST P-384	Digital signatures
SHA-384	Integrity
AES-256	Confidentiality

In other publications, you might see that NIST Suite B is the recommended standard for encryption ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Start your free trial

Mastering Linux Security and Hardening - Third Edition

Donald A. Tevault

Linux Basics for Hackers

OccupyTheWeb .

Mastering Windows Security and Hardening - Second Edition

Mark Dunkerley, Matt Tumbarello

UNIX and Linux System Administration Handbook, 5th Edition

Trent R. Hein, Evi Nemeth, Garth Snyder, Ben Whaley, Dan Mackin

Publisher Resources

ISBN: 9781838981778Supplemental Content