[Cryptography] SSL Certificates are expiring...

[Ryan Carboni]

>Perfectly good HW, but with firmware that can't be updated.


To repeat a previous email sent to this mailing list (the responses
were along the lines that everything will be quickly updated):

Shouldn’t root certificates switch to McEliece?

Certificates are used for decades, and thus is the only public key
cryptography that need to be protected with the same schedule that the
NSA has.

Let’s Encrypt’s roadmap for upcoming features has “Support for signing
ECDSA keys with a full ECDSA cert chain will be added later.”

Perhaps it has stalled, but it seems like people are heading into a
direction where cryptography is weaker in the long term?
Maybe the transition will begin at the last minute when academics
finally factor a 128-bit semiprime with a quantum computer