Why EC certs and not RSA?

spiffe / spiffe-helper

The SPIFFE Helper is a tool that can be used to retrieve and manage SVIDs on behalf of a workload

Apache License 2.0

43 stars 40 forks source link

Why EC certs and not RSA? #26

Closed blaggacao closed 3 years ago

blaggacao commented 3 years ago

I'm just relaying the question while I was investigating into the direction of getting EC cert support to the fundamental rust ssl libraries, I can't give a solid answer myself:

https://github.com/ctz/rustls/pull/409#issuecomment-720709802

briansmith commented 3 years ago

My question there isn't "why use EC certs instead of RSA" but rather "Why use a non-standard format instead of a standard format?" PKCS#8 isn't great but it is much more universally supported.

blaggacao commented 3 years ago

Oh thanks! I felt the need for making the title more palpable, but that came at the expense of accuracy.

blaggacao commented 3 years ago

@briansmith It doesn't seem there is emerging a compelling answer to your question, so I'm closing this.