Skip to content

TLS Module: The default ecdhCurve, prime256v1 (aka NIST P-256) is not safe. #1495

New issue
New issue
Closed
Closed
TLS Module: The default ecdhCurve, prime256v1 (aka NIST P-256) is not safe.#1495
Labels
blockedPRs that are blocked by other issues or PRs.opensslIssues and PRs related to the OpenSSL dependency.securityIssues and PRs related to security.tlsIssues and PRs related to the tls subsystem.
@mattcollier

Description

@mattcollier
mattcollier
opened on Apr 21, 2015

This document states that the default curve for the ecdhCurve parameter is prime256v1.
https://iojs.org/api/tls.html#tls_tls_createserver_options_secureconnectionlistener

Appendix A of this document indicates that prime256v1 is also known as NIST P-256.
http://www.rfc-editor.org/rfc/rfc4492.txt

This site indicates that NIST P-256 is not secure.
http://safecurves.cr.yp.to/

I recommend that a safe alternative should be chosen as the default and unsafe curves should not be made available.

Also posted to nodejs: nodejs/node-v0.x-archive#18205

Metadata

Metadata

Assignees

No one assigned

    Labels

    blockedPRs that are blocked by other issues or PRs.opensslIssues and PRs related to the OpenSSL dependency.securityIssues and PRs related to security.tlsIssues and PRs related to the tls subsystem.

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions