> On Sep 11, 2018, at 6:20 PM, Viktor Dukhovni
> wrote:
>
>
> The 1.0.2 documentation for "ECDHParameters" explains that this is
> server-side setting to select a particular *fixed* ECDHE curve.
> This is a legacy feature that predates negotiation of the curve
> used based on the client's ex
> On Sep 11, 2018, at 4:55 PM, Joseph Christopher Sible
> wrote:
>
> What exactly are each of "Curves" and "ECDHParameters" used for, as
> documented by https://www.openssl.org/docs/man1.0.2/ssl/SSL_CONF_cmd.html?
The documentation of OpenSSL 1.1.x does not mention "ECDHParameters",
only "Curve
What exactly are each of "Curves" and "ECDHParameters" used for, as
documented by https://www.openssl.org/docs/man1.0.2/ssl/SSL_CONF_cmd.html?
My understanding of elliptic curves in TLS is that they're used in two
places: as ECDSA key pairs used in certificates, and in ECDHE for key
exchange. (Are
