Hi, ECDSA and the NIST curves (and in fact a large part of NIST’s crypto standardization work¹) are actually considered with skepticism by some:
https://en.wikipedia.org/wiki/Elliptic_Curve_Digital_Signature_Algorithm#Concerns That makes me wonder whether supporting them is a good idea, after all. Evidently they’re not widely used in OpenPGP and not supporting them hasn’t been much of a problem, it seems. On one hand, we don’t want Guix’s OpenPGP implementation to limit what users do with their OpenPGP keys; on the other hand, we don’t want to encourage algorithms that bring little to the table at best and are suspicious at worst. What do people think? Ludo’. ¹ https://blog.cr.yp.to/20220805-nsa.html
