Hacker News new | ask | show | jobs
by laksdjfkasljdf 2124 days ago
last I checked pgp keys were limited to rsa2048. While the recommendation for the last two years have been rsa4096 (or ed-512 depending who you ask)

Is this still the case? their site only have pgp support as a binary option on the models, no extra info anywhere to be found on their search.
2 comments
breser 2124 days ago
Yubikey 4 and newer supports 4096 bit keys with PGP: https://www.yubico.com/products/compare-yubikey-4-neo/ https://www.yubico.com/products/compare-yubikey-5-series/
link
laksdjfkasljdf 2124 days ago
where do you see that information on that page?
link
crote 2124 days ago
All the way at the bottom of the table, under "Cryptographic Specifications".

Recent versions also have support for plenty of ECC algorithms, see https://www.yubico.com/blog/whats-new-in-yubikey-firmware-5-...

link
trishankdatadog 2124 days ago
It's not well-documented, but non-FIPS can support 4096. FIPS goes up to 3072 for, well, FIPS reasons.
link