I'm confused. I thought that secp384r1 and P-384 were two names for the same thing. For instance, ISRG Root X2's text dump says both names in it, one being an "ASN1" name and one being a "NIST" name. Or am I completely misunderstanding and they're referring to different parts of the encryption process and both are used? I'm far from an expert in all of this, just an amateur who knows that he knows just enough to be dangerous. I thought that this curve (the one Let's Encrypt uses for Root X2) was the one that NSA was recommending for elliptic curve based encryption, and that web browsers had reasonable support for it. It's just that P-256 is faster but has a shorter effective key length if I understand right.
2 Likes