Enabling and using ECC keys (any reason not to?)

Johan Wevers johanw at vulcan.xs4all.nl
Thu Mar 26 17:55:21 CET 2015

On 26-03-2015 9:59, Mike Ingle wrote:

> Is this just a backward
> compatibility thing, or is the security of ECC keys not fully trusted yet?

The buzz about Dual_EC_DRBG made it clear that it is possible to design
curves where the designers have access to data that allows them to
compromise the system. Wether the curves used in a given implementation
are suspected to possibly have such a weakness is a matter of debate. I
didn't check the status of this for the curves used in GnuPG 2.1.

ir. J.C.A. Wevers
PGP/GPG public keys at http://www.xs4all.nl/~johanw/pgpkeys.html

More information about the Gnupg-users mailing list