Date

An RFP was filed for seccure, a small program allowing ECC based public-key crypto. I snapped it up and produced a package. The packaging was simple, but I enjoyed playing with the software while I was doing it.

The upstream author, B. Poettering, has been fantastic, very responsive and helpful. He even asked what features I would be interested in for the software.

He wrote it for backups, and so it is quite simple, without the keyrings etc. of gpg. It might be quite useful, and the length of the keys makes it easy to pass them around. I have put my key in my .signature for a bit of advertising. ECC is planned to be included in a future version of gpg, so seccure will stay small.

I also asked the debian-audit team if they would take a look at the package. Ulf Harnhammar and Brian M. Carlson had a look, and said that it was very well done.

I think there is a dictionary attack on the password, and so the secret key, so you better pick a good one. My public key is

(3+)k7|M*edCX/.A:n*N!>|&7U.L#9E)Tu)T0>AM

using the secp256r1/nistp256 curve.

I currently have an open RFS for the package, but I need to update it, as there is a new upstream release, including an implementation of DH key exchange.