Uh, what? “Elliptic Curve Digital Signature (ECDSA) is the new kid on the block and makes for much smaller key sizes but isn’t quite as performance friendly or compatible as the old standby RSA.”https://aws.amazon.com/blogs/aws/aws-certificate-manager-launches-private-certificate-authority/ …
-
-
That can be a server that needs to scale, or a set of clients. We do like to err on the side of caution and warn customers about potential negative consequences. For many customers, ECDSA is a straight-forward win. That's why ALB and Cloudfront both support ECDSA.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
I would expect extensive use of session tickets and resumption if latency is that critical. Plus, have to remember multiple verifies due to CA certs
-
In my experience, resumption is usually not available in many of environments that deploy private CAs. It's not just latency, but also capacity and cost of resources.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.