[acqq]

Who can generate? Aren't the values fixed by the standards, mustn't both client and servers use the same as long as they support the given standard?

[tptacek]

The standard provides a standard set of curve parameters and a NIST-sanctioned way of generating new curve parameters using the exact same method.

[acqq]

How can be any other parameters than the standard ones used in the current browsers and servers? I think they can't, am I right?

And how can browsers start to use any other parameters before they standardise them? I think they can't?

[tptacek]

This is true but not particularly meaningful to me, because you can't really do anything new with crypto at all without some kind of software update. For instance, the primes and generator for conventional number theoretic DH are also pre-generated and baked into a standard.