[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Possible crypto backdoor in RFC-2631 Diffie-Hellman Key Agreement Method

To: Peter Gutmann <[email protected]>
Subject: Possible crypto backdoor in RFC-2631 Diffie-Hellman Key Agreement Method
From: [email protected] (Georgi Guninski)
Date: Thu, 18 Feb 2016 12:08:12 +0200
Cc: "[email protected]" <[email protected]>
In-reply-to: <9A043F3CF02CD34C8E74AC1594475C73F4AF3CC4@uxcn10-5.UoA.auckland.ac.nz>
References: <[email protected]$> <[email protected]$> <[email protected]$> <[email protected]$> <CA+bTbPDoQi030MN4j8E4fmx_KOQP48xsbJjGM4X2rk=_E3zgZQ@mail.gmail.com> <[email protected]$> <CA+bTbPCHKm_n8ei9qw6yx=VVbHh+z8jQ1GNYa+gs6ZLC0AfxyQ@mail.gmail.com> <9A043F3CF02CD34C8E74AC1594475C73F4AF36EE@uxcn10-5.UoA.auckland.ac.nz> <[email protected]$> <9A043F3CF02CD34C8E74AC1594475C73F4AF3CC4@uxcn10-5.UoA.auckland.ac.nz>

Observe that reusage of group parameters in DH appears common:

Imperfect Forward Secrecy: How Diffie-Hellman Fails in Practice

https://weakdh.org/imperfect-forward-secrecy-ccs15.pdf
p.3

Table 1: Top 512-bit DH primes for TLS. 8.4% of Alexa
Top 1M HTTPS domains allow DHE_EXPORT, of which
92.3% use one of the two most popular primes, shown here.

Prev by Date: Inside John Kerry's Photo Op With Hollywood Leaders: Anti-ISIS Pow-Wow Yields Few Plans, Ideas
Next by Date: Cryptome?s searing critique of Snowden Inc.
Previous by thread: Inside John Kerry's Photo Op With Hollywood Leaders: Anti-ISIS Pow-Wow Yields Few Plans, Ideas
Next by thread: A touch of contention - 9 People You Will Definitely Meet in Hell - an Indian Perspective
Index(es):
- Date
- Thread