Is there support forECC curve brainpoolP256r1 in ADCS 2012 R2 or in any other version of Microsoft Certificate Services?
If it‘s not supported by default CNG algorithms (suite B) in Windows, then: is it possible to use 3rd party HSM with support of required algorithms and curves (i.e. Thales netHSM) together with ADCS for issuing Root (Standalone) CA, Enterprise CA or end-user certificates? Actually, this is our final goal.
Another possible related issue: if we will manage to generate keys and to issue certificates using ECC brainpoolP256r1 curves, then what about client side – are end-users will be able to use such certificates? According to this article (http://en.wikipedia.org/wiki/Comparison_of_TLS_Implementations), brainpoolP256r1 curve is not supported by Windows clients.
These curves are defined by ETSI TS 102 176-1 (http://www.etsi.org/deliver/etsi_ts/102100_102199/10217601/02.00.00_60/ts_10217601v020000p.pdf) and described in: OID {1(iso) 3(identified organization) 36(teletrust) 3(algorithm) 3(signature algorithm) 2(ecSign) 8(ecStdCurvesAndGeneration)} (https://www.teletrust.de/fileadmin/files/oid/oid_ECC-Brainpool-Standard-curves-V1.pdf).
There is growing demand in Europe Union for Qualified CA to be compatible not with US standards (approved by NSA), but with EU standards. It may be related with latest security issues (especially using ECC algorithms, approved by NSA).
So, the main questions are:
- Is it possible touse brainpoolP256r1 ECC curve in ADCS?
- Will such certificates besupported on Windows client devices?