AnsweredAssumed Answered

Weak public key length not scored

Question asked by Ryan C on Feb 12, 2017

Elliptic curve have 1/2 the bit length in security.

 

This for example: 

SSL Server Test: tls.mbed.org (Powered by Qualys SSL Labs) 

 

Supported EC Named Curves

secp521r1, brainpoolP512r1, secp384r1, brainpoolP384r1, secp256r1, secp256k1, brainpoolP256r1, secp224r1, secp224k1, secp192r1, secp192k1 (server preferred order)

 

supports 192-bit curves. I think 192-bit curves and weaker should be capped to a B rating.

Outcomes