It may be possible to reduce the number of dependencies on cryptographic libraries:
num_bigint => rustcrypto/crypto_bigint
Crypto_bigint has better ergonomics, and a reduced number of dependencies for modular arithmetic (which num_bigint requires from https://github.com/cmpute/num-modular). It is also possible that crypto_bigint has a higher performance.
ruescasd
commented
4 months ago
Suggestion
It may be possible to reduce the number of dependencies on cryptographic libraries:
Crypto_bigint has better ergonomics, and a reduced number of dependencies for modular arithmetic (which num_bigint requires from https://github.com/cmpute/num-modular). It is also possible that crypto_bigint has a higher performance.
If ring gains FIPS support (https://briansmith.org/lets-build-a-fips-rust-crypto) it would be the first pure rust library to do so, allowing reusing FIPS compliant code on server and browser, without compatibility issues (for example, for signatures). Note also that rcgen is already using ring as a dependency (https://crates.io/crates/rcgen/0.12.1/dependencies) for x509 certificate validation.