Elliptic Curve

Following Postel's Law, Fission accepts many key signing schemes, but only generates and 2048-bit RSA key pairs, and Curve 25519 keys with signatures on the Edwards Curve (also known as Ed25519).

We have chosen Ed25519 for a multitude of reasons, not least of which being reasonable performance and quantum-resistant security.

[...] concretely Curve25519 works with keys consisting of about 256 bits, while an equivalent RSA instantiation would need key sizes of 3072 bits long. Source‚Äč

Elliptic curve cryptography is by no means "perfect security", and can be defeated if the verifier does not verify that the public key actually falls on the correct curve. As such, please verify that the signature that comes in a payload is indeed on Curve 25519.