- From: Martin Thomson <notifications@github.com>
- Date: Mon, 30 Mar 2015 11:24:50 -0700
- To: w3c/push-api <push-api@noreply.github.com>
Received on Monday, 30 March 2015 18:25:15 UTC
I talked to agl about this and he asked me about this specific point. If 25519 were more widely deployed, I'd definitely use it (it uses fewer bits to express a public key, it's faster, etc...). However, P-256 enjoys far better deployment. For instance, 25519 requires a lot of extra work to implement in Firefox, but we've had P-256 for years. @costinm original concerns were around deployment to old versions of Android, but old versions of Android lack both AES-GCM and P-256 as well as 25519. I don't know whether there are any versions with 25519, but it is likely less well-deployed than P-256. BTW, once Brian and I get a revised draft submitted, I will submit a revision to this PR with proper links. --- Reply to this email directly or view it on GitHub: https://github.com/w3c/push-api/pull/130#issuecomment-87780415
Received on Monday, 30 March 2015 18:25:15 UTC