Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

>People in the business have taken precautions like using more encryption

Do you mean for their own small scale activities?

The only ECDH curves possible to use on the big tech internet were given by the head of the NSA with no explanation and are manipulatable.



ED25519 is not a NIST curve.


And Ed25519 is not supported by major CAs.


> And Ed25519 is not supported by major CAs.

Perhaps because until February 2023 (when FIPS 186-5 was published) it wasn't approved for US government use:

* https://en.wikipedia.org/wiki/EdDSA#Standardization_and_impl...

So there would have been complications for a sizeable base of potential customers (US, contractors, allies).


Oh, major CAs. GP spoke of Ed25519 not being useable on "the big tech internet", but didn't mention certificates or certificate authorities.


I meant in many ways, not just encryption. Just didn't feel like elaborating.

For example my $dayjob does government contracts (in europe) and we're noticing a lot more agencies request on-prem, within borders, service hosting.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: