Choose encryption type   This prompt only appears if you have purchased a license for ECC encryption. Choose RSA or ECC.

Enter RSA key length (512-16384)   This prompt only appears if you chose RSA encryption. You can choose a length between 512 bits and 16384 bits.

Enter ECC curve   This prompt only appears if you have purchased a license for ECC encryption and you chose the ECC encryption type. You are prompted to choose from a list of ECC curves. The default is secp521r1.

The three digit number in the curve name represents the bit-size of the curve. The encryption strength of a curve is approximately equivalent to an AES key of half the size. For example, a 512-bit ECC curve would have the same strength as a 256-bit AES key.

The following ECC curves are supported:

• sect163k1
• sect163r2
• sect233k1
• sect233r1
• sect283k1
• sect283r1
• sect409k1
• sect409r1
• sect571k1
• sect571r1
• secp192r1
• secp224r1
• secp256r1
• secp384r1
• secp521r1

Enter file path to save public key   Specify a file name and location for the generated PEM or DER encoded public key. This file is specified on the MobiLink client by the e2ee_public_key protocol option. See e2ee_public_key.

Enter file path to save private key   Specify a file name and location for the generated PEM or DER encoded private key. This file is specified on the MobiLink server via the e2ee_private_key protocol option. See -x mlsrv12 option.

Enter password to protect private key   Optionally, supply a password with which to encrypt the private key. The private key is not encrypted if you do not supply a password. This password is specified on the MobiLink server via the e2ee_private_key_password protocol option. See -x mlsrv12 option.