Conversation

What browsers/percent of users/legacy clients can't do ECDSA certs these days? A few years back AWS Cloudfront couldn't, but I assume that's been upgraded? Anything else?
6
2
Replying to and
ECDSA is better if you care about compatibility with the oldest still supported clients. Internet Explorer 11 only supports ECDHE with an ECDSA certificate. If you use an RSA certificate and care about compatibility, you have to enable the DHE ciphers and configure it properly.
1