The key regeneration is touted as a proper solution and the cards do not need to be replaced after the procedure. It takes advantage of ECDSA to circumvent the borked RSA.
There is a huge campaign going on with service points open even in shopping malls for people that do not manage the process at home. Initially there were some scaling problems, though..
Edit: to tell the truth, the information available in Estonia regarding the exact nature of the fix is still scarce. There has been some offhand remarks from RIA that the updater basically patches the microcode on the card to generate an EC keypair, but not a lot of details.. The basic premise that the new key is still generated on the card, still holds, apparently.
https://github.com/open-eid/qesteidutil/commit/20ead85d31b0b...
There is a huge campaign going on with service points open even in shopping malls for people that do not manage the process at home. Initially there were some scaling problems, though..
Edit: to tell the truth, the information available in Estonia regarding the exact nature of the fix is still scarce. There has been some offhand remarks from RIA that the updater basically patches the microcode on the card to generate an EC keypair, but not a lot of details.. The basic premise that the new key is still generated on the card, still holds, apparently.