Ed448 for DNSSEC
Description: This domain is protected with DNSSEC algorithm 15 (Ed25519). Ed25519 has many advantages over ECDSA P-256 (algorithm 13): it offers the same level of security with shorter DNSKEY records, it is faster, it is not dependent on a unique random number when generating signatures, it is more resilient to side-channel attacks, and it is easier to implement correctly.
This domain is protected with DNSSEC algorithm 15 (Ed25519). It is hosted at domainname.shop . They sign all their zones using DNSSEC by default.
Ed25519 was standardized for use with DNSSEC in February 2017 (RFC8080) and has been a RECOMMENDED algorithm since June 2019 (RFC8624) . It has been supported in the .no zone since February 2020. The latest stable versions of OpenSSL (3.x / 1.1.1) fully support Ed25519. All older versions (including 1.1.0, 1.0.2 and 1.0.0) are now out of support and users of these older versions are encouraged to upgrade to 3.x or 1.1.1 as soon as possible . Ed25519 is also supported by the public resolvers of CloudFlare (1
Ed25519 is an Edwards-curve Digital Signature Algorithm (EdDSA). Like other ellipctic curve algorithms, its main advantage over RSA is that it offers the same level of security with much shorter key lengths, leading to shorter DNSKEY and RRSIG records. This in turn means that most DNS responses will fit in a single UDP packet (
Ed448 for DNSSEC