• deepdive@lemmy.world
      link
      fedilink
      English
      arrow-up
      3
      ·
      1 year ago

      Strange enough TLS 1.3 still doesn’t support signed ed25519 certificates :| P‐256, NIST P‐384 or NIST P‐521 curves are known to be “backdoored” or having deliberately chosen mathematical weakness. I’m not an expert and just a noob security/selfhoster enthusiast but I don’t want to depend on curves made by NSA or other spy agencies !

      I also wondering if the EU isn’t going to implement something similar with all their new spying laws currently discussed…