On 03/14/2014 02:27 PM, Ludovic Courtès wrote: > Guix is not tied to any particular public key crypto algorithm. > Currently we typically use RSA key, as you note, but we could just as > well tell libgcrypt to use something else, no?
Yes, and my point is you should. I also do not believe in giving users choices in this respect, as they will invariably make bad choices. For GNS-compatibility, you should use ECDSA on Curve25519 with RFC 6979 (deterministic ECDSA).
0x48426C7E.asc
Description: application/pgp-keys
signature.asc
Description: OpenPGP digital signature
