On 29/06/2016 16:53, Salz, Rich wrote: >> How do I do this? Using the OpenSSL command line tool, a certificate request must be self-signed, but the X25519 elliptic curve (newly supported in version 1.1.0), doesn't do signature, it can only be used for key exchange. > You cannot do it. > > You should look at the CFRG documents on Ed25519. > This raises two general questions: 1. What is CFRG, I don't remember that acronym. 2. What is the general procedure for generating a CSR for an encryption-only algorithm, such as DH, ECDH etc.? Enjoy Jakob -- Jakob Bohm, CIO, Partner, WiseMo A/S. https://www.wisemo.com Transformervej 29, 2860 S?borg, Denmark. Direct +45 31 13 16 10 This public discussion message is non-binding and may contain errors. WiseMo - Remote Service Management for PCs, Phones and Embedded
