[Opendnssec-user] OpenDNSSEC 2.0.0 and ECDSA p-256

Yuri Schaeffer yuri at nlnetlabs.nl
Thu Jul 21 07:04:26 UTC 2016

Hi Dane,

On 20-07-16 02:06, Dane Foster wrote:
> ods-hsmutil test confirms both repositories support ECDSA p-256.
> Seems odd it’s trying to create a 256bit RSA key ? The behaviour seems consistent with both SoftHSM2 and the NitroKey HSM.

As far as I know OpenDNSSEC can only handle RSA keys. It is on our
wishlist but no work has gone into it yet.


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 181 bytes
Desc: OpenPGP digital signature
URL: <http://lists.opendnssec.org/pipermail/opendnssec-user/attachments/20160721/0be2b61d/attachment.bin>

More information about the Opendnssec-user mailing list