|Applies To||RSA Certificate Manager 6.7|
Microsoft Windows 2003 Server SP1
Elliptic curve cryptography (ECC)
|Issue||How does ECC work on the client side|
Created a CA on RSA Certificate Manager (RCM) using ECC. On the client side, used latest Firefox version on Linux. When a user makes a certificate request, the only options are for two key sizes. There is nothing about ECC.
The key sizes shown on the client browser has nothing to do with ECC CAs. The client browser is showing RSA key sizes. The keys are generated at client side (on the browser) and then the request is approved on the RCM admin server; there the certificate is issued by ECC CA. The client?s key size will be based on the key size selected at the time of request generation; it is not based on CA?s key size. The certificate?s signature algorithm will be ECDSA.
|Legacy Article ID||a37332|