Enabling and using ECC keys (any reason not to?)
johanw at vulcan.xs4all.nl
Thu Mar 26 17:55:21 CET 2015
On 26-03-2015 9:59, Mike Ingle wrote:
> Is this just a backward
> compatibility thing, or is the security of ECC keys not fully trusted yet?
The buzz about Dual_EC_DRBG made it clear that it is possible to design
curves where the designers have access to data that allows them to
compromise the system. Wether the curves used in a given implementation
are suspected to possibly have such a weakness is a matter of debate. I
didn't check the status of this for the curves used in GnuPG 2.1.
ir. J.C.A. Wevers
PGP/GPG public keys at http://www.xs4all.nl/~johanw/pgpkeys.html
More information about the Gnupg-users