Project update list EU Win 3.23.005

The following changes were done:

EU Win 3.23.004 100001/1

Reported by: OMIKRON Systemhaus
Helmut Knester DE

Request: Key generation for key length from 1.024 bytes only (A004/M003 and higher)

With AR Minikey version 8 key Generations Fails with error message:
[E_OSEPKCS11_PKCS11_CKR_ATTRIBUTE_VALUE_INVALID] (2067)

Comment: The reason is that during initialization the token signalizes support of keys between 512 and 2048 bytes, but then refuses the generation of a 768 bit key.

As already for many years those short keys must be regarded as unsecure, in future only keys with minimum length of 1.024 bytes (Version A004/M003 and higher)will be generated (for all signature media).

Advice:
As long as the user doesn't generate new keys he can carry on using 768 bit keys for old signature versions. With the next key generation no 768 bit keys are generated any more. Subsequently no signatures with old versions are possible from this time.

EU Win	3.23.004	100001/1
Reported by:	OMIKRON Systemhaus Helmut Knester DE
Request:	Key generation for key length from 1.024 bytes only (A004/M003 and higher)
	With AR Minikey version 8 key Generations Fails with error message: [E_OSEPKCS11_PKCS11_CKR_ATTRIBUTE_VALUE_INVALID] (2067)
Comment:	The reason is that during initialization the token signalizes support of keys between 512 and 2048 bytes, but then refuses the generation of a 768 bit key. As already for many years those short keys must be regarded as unsecure, in future only keys with minimum length of 1.024 bytes (Version A004/M003 and higher)will be generated (for all signature media). Advice: As long as the user doesn't generate new keys he can carry on using 768 bit keys for old signature versions. With the next key generation no 768 bit keys are generated any more. Subsequently no signatures with old versions are possible from this time.