Hello crypto gooruzz! NSS has utitity "makepqg" for generating parametrs for DSA. Parametrs stored in file and can be used in key pair generation. certutil use hardcoded valuse for P, Q and G if such file not specified.
Questions. How ditribute this file? It is posible to use this file only for key generation? How, make and verify signed message without this file?
