On 2015-11-05 21:01, [email protected] wrote:
I would like to see SHA-3 signatures and Ed25519/curve25519 ASAP.
The later one is not that far away [1].
Maybe it's the right time to consider them?
[1] https://bugzilla.mozilla.org/show_bug.cgi?id=957105
This is about certificate, so as far as I know it would be Ed25519, not
curve25519.
I'm not sure there is any standard to do either SHA-3 or Ed25519 in a
certificate, but for Ed25519 there is at least a draft.
Reading that bug, I'm also concerned about the implementation that NSS
is considering using for curve25519. Like Watson Ladd indicated, they
should not convert it to the short Weierstrass form.
Kurt
_______________________________________________
dev-security-policy mailing list
[email protected]
https://lists.mozilla.org/listinfo/dev-security-policy
