1 |
On Thursday 17 Apr 2014 19:43:25 Matti Nykyri wrote: |
2 |
> On Thu, Apr 17, 2014 at 04:49:45PM +0100, Mick wrote: |
3 |
|
4 |
> > Can you please share how you create ECDHE_ECDSA with openssl ecparam, or |
5 |
> > ping a URL if that is more convenient? |
6 |
> |
7 |
> Select curve for ECDSA: |
8 |
> openssl ecparam -out ec_param.pem -name secp521r1 |
9 |
[snip ...] |
10 |
|
11 |
> I don't know much about the secp521r1 curve or about its security. |
12 |
[snip ...] |
13 |
|
14 |
It seems that many sites that use ECDHE with various CA signature algorithms |
15 |
(ECC as well as conventional symmetric) use the secp521r1 curve - aka P-256. |
16 |
I just checked and gmail/google accounts use it too. |
17 |
|
18 |
Markus showed secp384r1 (P-384) in his example. |
19 |
|
20 |
The thing is guys that both of these are shown as 'unsafe' in the |
21 |
http://safecurves.cr.yp.to tables and are of course specified by NIST and NSA. |
22 |
|
23 |
Thank you both for your replies. I need to read a bit more into all this |
24 |
before I settle on a curve. |
25 |
|
26 |
-- |
27 |
Regards, |
28 |
Mick |