Change the curves used in both mbedTLS and Tinycrypt

Description

Runtime input: Not needed. Should be safe because there is no actual exchange with another party in bootloader.

Linaro: there is still concern that the NIST curves may have backdoors, even in this use case, and that a certain large government might be able to forget signatures. It's not high priority, and not likely otherwise weak.

Status

Assignee

David Brown

Reporter

Aditi Hilbert

Labels

None

Fix versions

Priority

Low