IETF-SSH archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: Curve25519/448 key agreement for SSH



Given that one of the design goals of the modern curves is to exchange
the public data as opaque bit strings, the protocol should not use
anything like a mpint to exchange the keys but instead should exchange
them as the opaque bit strings they are.

How the crypto primitives use them is irrelevant to how they should be
exchanged.

Every 25519 public key should be exactly 32 octets and every goldilocks
public key should be exactly 60 octets.  Full stop.

-JimC
-- 
James Cloos <cloos%jhcloos.com@localhost>         OpenPGP: 0x997A9F17ED7DAEA6



Home | Main Index | Thread Index | Old Index