On 12/07/2014 03:20 AM, Peter Saint-Andre - &yet wrote:
> Joe St. Sauver raised a concern about P-256:
>
> Also in 4.2.1, NIST P-256 (secp256r1) is called out for
> interoperability purposes. I get the intent, but I have concerns
> given the analysis reported near the bottom of
> http://safecurves.cr.yp.to/ for that (and related) curves.
>
> The sense of the authors is that we don't know enough to move away from
> P-256 at this time, and that if evidence emerges for a better candidate
> then this recommendation could be modified in a BCP that replaces this
> document.
>
> Naturally, if WG participants have concerns and we can settle on a
> better recommendation now, then the authors will incorporate the results
> of working group consensus.
>
I believe the CFRG is expected to come up with curve recommendations for
the IETF. I believe We should wait for them and decide if we want to
rev. the BCP at that time but this is one of those areas where I'd
like the sec area ADs to chime in.
Cheers Leif
_______________________________________________
Uta mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/uta
