The mitigation should be to remove all code that supports custom elliptic curves. This is a misfeature, it shouldn't exist. I also don't think anyone uses it for real.
This stems from a time where people thought maximum flexibility in cryptography is a good idea. It's not.
This stems from a time where people thought maximum flexibility in cryptography is a good idea. It's not.