Hi Adrian, > For the use in the DH key exchange, an additional standard would be > required, which as far as I know is not finalized yet, see [1]. Even more problematic is their use with ECDSA, see [1] for some background. Regards, Tobias [1] http://tools.ietf.org/html/draft-kivinen-ipsecme-signature-auth