After reading the announcement on blocking RSA key sizes because one can’t be sure if they were made with the old buggy OpenSSL from Debian, it got me curious on something that I couldn’t readily find an answer to in my web searching: Is it possible for somebody to make an ECDSA private key with th…

It is not. From the 2009 paper " When Private Keys Become Public: Results from the 2008 Debian OpenSSL Vulnerability ": the version of OpenSSL deployed on Debian-derived distributions ships without any elliptic curve support.

Is it possible to make ECDSA keys with insecure Debian OpenSSL?

Issuance Policy

griffin September 16, 2020, 10:59pm 2

Funny you should mention them. They were around here recently...

2 Likes

Topic		Replies	Views
ECDSA testing on staging	73	27710	July 15, 2016
Feedback requested: what's standing between you and ECDSA? Site Feedback	23	507	October 27, 2024
ECDSA 384 Issuance Issuance Tech	25	4088	September 22, 2023
Elliptic Curve Cryptography (ECC) Support Feature Requests	200	62150	June 19, 2016
ECDSA certificate issuance failure in both staging and production Help	14	3148	August 29, 2016

Is it possible to make ECDSA keys with insecure Debian OpenSSL?

Related topics