RE: [TLS] Any advice regarding frequency of generating new DHparameters?

To: <mike-list at pobox.com>, <tls at ietf.org>
Subject: RE: [TLS] Any advice regarding frequency of generating new DHparameters?
From: <Pasi.Eronen at nokia.com>
Date: Mon, 18 Dec 2006 11:53:33 +0200
Cc:
In-reply-to: <45834428.70801@pobox.com>
List-archive: <http://www1.ietf.org/pipermail/tls>
List-help: <mailto:tls-request@lists.ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-post: <mailto:tls@lists.ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
Thread-index: AccgrV0uexP/HY5NRiysugPKj2syYwB25ggQ
Thread-topic: [TLS] Any advice regarding frequency of generating new DHparameters?

Hi Mike,

Protocols such as IKEv2 use the same modulus (p) and generator (g)
forever (but of course generate new public/private values), since 
they don't actually send the p/g values, but just the group number.

IMHO it probably would make sense for a TLS implementation to use 
one of the groups specified in RFC 4306 or 3526, instead of e.g. 
generating a random prime p (generating random primes is kind of 
slow, and then you have to worry about RFC 2785 etc.). 

(Would others agree with this recommendation? Should we add it 
to the TLS 1.2 spec?)

Best regards,
Pasi 

> -----Original Message-----
> From: ext Mike [mailto:mike-list at pobox.com] 
> Sent: 16 December, 2006 02:56
> To: tls at ietf.org
> Subject: [TLS] Any advice regarding frequency of generating 
> new DHparameters?
> 
> Hi,
> 
> I'm wondering if there is any generally accepted advice
> on how long to use the same Diffie-Hellman parameters in
> a TLS server.  Does the answer depend on whether the
> server generates a new public key from the parameters
> for each new connection (mine does)?
> 
> Thanks for any insight,
> 
> Mike
> 
> _______________________________________________
> TLS mailing list
> TLS at lists.ietf.org
> https://www1.ietf.org/mailman/listinfo/tls
> 

_______________________________________________
TLS mailing list
TLS at lists.ietf.org
https://www1.ietf.org/mailman/listinfo/tls

Follow-Ups:
- Re: [TLS] Any advice regarding frequency of generating new DHparameters?
  - From: Mike

References:
- [TLS] Any advice regarding frequency of generating new DH parameters?
  - From: Mike

Prev by Date: RE: [TLS] Record layer corner cases
Next by Date: RE: [TLS] Any advice regarding frequency of generating newDHparameters?
Previous by thread: [TLS] Any advice regarding frequency of generating new DH parameters?
Next by thread: Re: [TLS] Any advice regarding frequency of generating new DHparameters?
Index(es):
- Date
- Thread

RE: [TLS] Any advice regarding frequency of generating new DHparameters?

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.