Eleptial Curve is now included in PGP. However when I run gpg2 --full-gen-key
, I get
Please select what kind of key you want: (1) RSA and RSA (default) (2) DSA and Elgamal (3) DSA (sign only) (4) RSA (sign only) (14) Existing key from card
It's only when I run it with gpg2 --full-gen-key --expert
that I get the option to generate an ECC key,
Please select what kind of key you want: (1) RSA and RSA (default) (2) DSA and Elgamal (3) DSA (sign only) (4) RSA (sign only) (7) DSA (set your own capabilities) (8) RSA (set your own capabilities) (9) ECC and ECC (10) ECC (sign only) (11) ECC (set your own capabilities) (13) Existing key (14) Existing key from card
Why is that ECC is only available as an --expert
feature in PGP? You can see this code in the latest version of GPG v2.2.40. The documentation doesn't just not say it's an export feature, but it says it's the default
GnuPG supports ECC since version 2.1 and creates ECC keypairs by default since version 2.3.