Transitioning to ECC and beyond

rg305 · April 12, 2018, 3:55am

We may some day be faced with the need to drop RSA and use only ECC (or some other better/faster/safer cert type)
No one can predict what the future may bring (with any certainty) but it doesn’t hurt to be prepared.

I’d like to see native simultaneous support for RSA and ECDSA cert types in certbot/certbot-auto
Keeping the same simple solution but allowing for clearer choices of cert type and even for the choice to include more than one cert type.

Osiris · April 12, 2018, 11:04am

As far as I know, LE has not yet reached consensus on how to make certbot handle the two different algorithms. Two certificates per “cert name” or just one certificate per “cert name”, but then two different “cert names”.

Until this question is resolved, development on certbot on this issue from my end has halted.

See this issue: https://github.com/certbot/certbot/issues/2163

Topic		Replies	Views
Getting dual RSA and ECC certs with certbot Help	7	8077	June 10, 2017
Does certbot/certbot-auto support ECC Help	3	591	September 24, 2020
Key-type = ecdsa Help	13	6625	May 2, 2021
ECDSA Do I need to update the cert Help	6	1013	May 26, 2024
Certificate renewal turned all RSA into EC certificates: Temporary hiccup or bug? Help	7	668	June 22, 2024

Transitioning to ECC and beyond

Related topics