2048 bit modulus is okay for authentication but for encryption it's generally considered too weak. Especially considering we can just as easily use a 4096 bit modulus now.
Login to reply
Replies (2)
People use RSA?!
Fair criticism, v1 was RSA-2048-OAEP directly on the plaintext, no hybrid. I've just replaced hchat's weak RSA encryption with X25519/Ed25519 + AES-256-GCM