Policy-Discussion

[Ian G <iang AT systemics.com>]

Johan van Selst wrote:
> Iang wrote:
> > Curious comment seen on crypto list... 2nd last penultimate 
> > paragraph what is CAcert's position on ECC?
>
> Don't know what the position is; but technically it works fine. CAcert
> has been happily signing my ECC certificates for a while already.


Ah, ok, thanks for confirming that.


> I suspect it will sign anything that OpenSSL groks.


(There was a discussion recently about this, possibly a 
document of some form is needed to explain more clearly what 
is signed and when.  A profile.  Something to think about 
later on when viewing the CPS critically.)


> Yes, I'm very much in favour of EC certificates; but also noticed that
> much (commericial) software "in the wild" does not support it yet.


Hmmm... You know, if you do know what software does support 
ECC then it might help the (overloaded) technical team to 
create a page on the wiki and list some of them.

(I see Philipp has posted some skepticism!)

Just a thought.

iang