Elliptic-curve cryptography for TLS certificates still not quite usable

Today I tried to just chose a elliptic curve for my TLS certifcate which I thought to be suitable, but was very disappointed about the browser support for those curves. I generated a key with a 521 bit curve but realized afterwards that browsers like M$ ones and chromium (wtf?) only support two curves recommended by the NSA.

Okay, sorry, I don’t really care what the NSA recommends, but I can’t put some major browsers before the doorstep. Well, so I reverted back to the 4096bit RSA key, because of the wide adoption.

Maybe I’ll provide a key with P-384 later on.

You know, you’re thinking about some future proof solution, at least for some years, but you’re stopped by slow technology adoption… quite disappointing.

At least I still got my A+ on ssllabs.com:


Some links: