I’m not sure if there are any technical blockers with adding secp256r1 (P-256) to the supported threshold ECDSA curves, but I’ve been hitting limitations trying to implement web standards that require it. Most OAuth 2.0 implementations and JWT libraries default to ES256 signatures, which need the P-256 curve specifically - this includes things like OAuth DPoP, AT Protocol, and pretty much any modern identity/auth system.
Right now I can only use secp256k1, which works great for blockchain stuff but doesn’t help with mainstream web protocols. Having P-256 support would unlock implementing a lot of standard web authentication flows directly on IC.
Is secp256r1 something that could be added, or is it already on the roadmap? Any other curves being considered?