@FreePietje @ggus The 2nd problem is that people know their own threat models better than you do, and they know better than you if their adversary is going to have the capability of cracking RSA1024. Users should be in control of their own security, not have a vendor impose on them.