encoding/decoding ECX private key with optional public key

Thulasi Goriparthi thulasi.goriparthi at gmail.com
Mon Feb 15 21:03:44 UTC 2021


Hello,

Is there any option either in 1.1.1 or 3.0.0 to encode ECX(x25519, x448,
ed25519, ed448) private keys along with optional/implicit public key as
specified in https://tools.ietf.org/html/rfc8410#page-7

Is there any plan to provide this support in future?

I ask this as I have come across an h/w which generates ecx (private) key,
returns reference to the private key and the corresponding public key(octet
string).

Private key reference instead of actual private key is encoded while
storing the key persistently. Public key derived by s/w from this "dummy"
private key wouldn't be the correct public key and h/w doesn't have
the ability/support
to take in the private key reference to generate the public key. This makes
saving public key along with private key (reference) unavoidable at the
time of key generation.

I would like to know how other h/w engines/providers supporting ecx keygen
are handling this situation.

Thanks,
Thulasi.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mta.openssl.org/pipermail/openssl-users/attachments/20210216/e1d1302f/attachment.html>


More information about the openssl-users mailing list