In your previous mail you wrote:

so there is little motivation to moving to elliptic curves.

=> I disagree:
- ECs are faster than RSA and give smaller keys and signatures
- ECs are based on a different mechanism than RSA, it is important
to provide a choice between two basic mechanisms in case one of
them is discovered far too weak (note this applies too to a EC
only solution :-)
So IMHO it should be good to investigate about an ECDSA DNSSEC option.

Regards

Francis.Dupont@fdupont.fr

PS: cryptographers I know promote the use of ECs...

--
to unsubscribe send a message to namedroppers-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: