• @deepdive@lemmy.world
    link
    fedilink
    English
    311 months ago

    Strange enough TLS 1.3 still doesn’t support signed ed25519 certificates :| P‐256, NIST P‐384 or NIST P‐521 curves are known to be “backdoored” or having deliberately chosen mathematical weakness. I’m not an expert and just a noob security/selfhoster enthusiast but I don’t want to depend on curves made by NSA or other spy agencies !

    I also wondering if the EU isn’t going to implement something similar with all their new spying laws currently discussed…

    • LaggyKar
      link
      fedilink
      311 months ago

      AFAIK, they’re not known to be backdoored, only suspected

      • @deepdive@lemmy.world
        link
        fedilink
        English
        211 months ago

        Yeah wrong wording, but the fact that we have to depend mostly on NSA’s cryptographic schemes makes it very suspicious !