cfcs
commented
8 years ago Yes. The spec allows custom signing algorithms. Do you have a specific use case for this?
Closed cmouse closed 8 years ago
cfcs
commented
8 years ago Yes. The spec allows custom signing algorithms. Do you have a specific use case for this?
cmouse
commented
8 years ago You use dsa keys at the moment. Was thinking that it would be nice to be able to migrate to ecdsa keys which are faster to generate and use. No specific use case in mind.
cfcs
commented
8 years ago It would not be compatible with any other OTR implementation, and the actual link encryption would still depend on the 1536-bit Diffie-Hellman key exchange (NIST recommendation from 2010 says that anything under 2048-bit should be considered insecure).
If you don't mind not being backwards compatible with OTR, there are other options.
Among others:
DrWhax
commented
8 years ago This is not the right repo for that, in addition, this should go into a specification. Closing ticket. Feel free to raise the issue on the otr-dev mailinglist.
cmouse
commented
8 years ago Thanks. I'll consider it.
Would it be possible to consider to use ECDSA keys instead of DSA keys in OTR?