ECDSA can be run in a deterministic fashion if desired (see RFC 6979). Note that the new EdDSA is only a deterministic signature and no random component is needed.
Jim > -----Original Message----- > From: Ace [mailto:[email protected]] On Behalf Of Michael Richardson > Sent: Monday, June 06, 2016 11:33 AM > To: Julien Vermillard <[email protected]> > Cc: Samuel Erdtman <[email protected]>; [email protected] > Subject: Re: [Ace] Constrained Environment PKI enrollment > > > Julien Vermillard <[email protected]> wrote: > > I wonder in which scenario a RNG is safe enough for running a DTLS > > stack but > > not good enough for generating a ECDSA key couple? > > Particularly since my understanding is that ECDSA signatures (like DSA ones) > require good RNG. This attribute has also bugged me about DSA, and made me > prefer RSA :-) > > -- > Michael Richardson <[email protected]>, Sandelman Software Works -= > IPv6 IoT consulting =- > > _______________________________________________ Ace mailing list [email protected] https://www.ietf.org/mailman/listinfo/ace
