OpenPGP smartcard and P-256 in non expert mode
Sosthène Guédon | Nitrokey
sosthene at nitrokey.com
Thu Aug 11 09:39:24 CEST 2022
I don't understand why generating a key on a smartcard only offers Curve25519 and P-384 for ECC cryptography unless the --expert flag is used.
P-384 is offered even when the hardware key doesn't support it and other curves which the hardware supports are not offered which is confusing.
Why is the P-256 curve disabled by default? It seems deliberate in https://git.gnupg.org/cgi-bin/gitweb.cgi?p=gnupg.git;a=commit;h=402aa0f94854bb00475c934be5ca6043a4632126
but I can't find any documentation on why that choice was made.
Email: sosthene at nitrokey.com
Rheinstr. 10 C, 14513 Teltow, Germany
CEO / CEO: Jan Suhr
Register: AG Potsdam, HRB 32882 P
VAT ID / VAT ID: DE300136599
More information about the Gnupg-users