Static esp_idf_hal::sys::mbedtls_x509_crt_profile_default

source ·

pub static mbedtls_x509_crt_profile_default: mbedtls_x509_crt_profile

Expand description

Default security profile. Should provide a good balance between security and compatibility with current deployments.

This profile permits:

SHA2 hashes with at least 256 bits: SHA-256, SHA-384, SHA-512.
Elliptic curves with 255 bits and above except secp256k1.
RSA with 2048 bits and above.

New minor versions of Mbed TLS may extend this profile, for example if new algorithms are added to the library. New minor versions of Mbed TLS will not reduce this profile unless serious security concerns require it.