It appears that Gellner, Oliver via mailop <oliver.gell...@dm.de> said: >> Won't any Google insider shred some lite on why a generally technically >> sound company lags like that? > >I‘m not an insider but I could imagine that DKIM signatures which use EdDSA >and ECDSA are solutions to a problem that has >not yet been discovered. >2048 bit RSA keys are small *enough* and fast *enough*. As long as they can be >considered secure it’s a waste of resources >to run a dual DKIM setup for years or possibly decades.
Exactly. While it would be a good idea to check that your software can create and check ED25519 signatures, there is no reason to switch to them unless someone finds a flaw in RSA. They're a little faster to create and check than RSA, but the difference isn't enough to matter. R's, John PS: I checked with the guy who wrote the RFC and he agrees. _______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
