Enabling and using ECC keys (any reason not to?)
mike at confidantmail.org
Thu Mar 26 09:59:53 CET 2015
The current version of Confidant Mail for Windows includes GPG 1.4.19.
However, the code is written to support version 2.1 and ECC keys. If you
point it to GPG 2.1, it will let GPG handle passphrases, and will let
you create and rotate ECC keys.
Is there any reason not to start using them? I have been reluctant to
bundle version 2.1, because once people start using ECC keys, using
version 2.1 becomes mandatory. GPG makes you ask very nicely
(--full-gen-key --expert) to get an ECC key. Is this just a backward
compatibility thing, or is the security of ECC keys not fully trusted yet?
I want to enable them, but not until it's safe.
More information about the Gnupg-users