5.1.2 Generating Keys

Generation of a cryptographic key requires randomness so that the generated key cannot be guessed by an attacker. Randomness is expressed in terms of entropy, in units of bits. A symmetric key should have as many bits of entropy as there are bits in the key. A public key pair should have as many bits of entropy as there are bits in the key minus a small number of bits.