Revision history [back]

When selecting a generator for elliptic curves used in ECDSA, it is important to consider several factors, including:

1. Security: The generator should be chosen in such a way that it provides a high level of security against attacks. The order of the generator should be large and prime to prevent easy factorization.

2. Efficiency: The generator should be chosen such that it is efficient in terms of computation and storage. A generator that requires a large amount of computation or storage will slow down the signing process and increase the cost of generating keys.

3. Compatibility: The generator should be chosen such that it is compatible with the intended application. Different applications may require different sizes of generators or different curves altogether.

4. Standardization: The generator should be chosen from a standardized set of curves to ensure interoperability with other implementations.

The most commonly used generator for ECDSA is the base point of the NIST P-256 curve, which has been standardized by NIST and is widely implemented in various systems. Other options include the NIST P-384 and P-521 curves, as well as curves designed by independent researchers such as Curve25519. Ultimately, the choice of generator will depend on the specific needs and requirements of the application.