Re: [TLS] Short Ephermal Diffie-Hellman keys

To: "Yngve N. Pettersen" <yngve at opera.com>
Subject: Re: [TLS] Short Ephermal Diffie-Hellman keys
From: Nelson B Bolyard <nelson at bolyard.com>
Date: Mon, 14 May 2007 11:46:58 -0700
Cc: tls at lists.ietf.org
In-reply-to: <op.tsa3n9ttqrq7tp@nimisha.oslo.opera.com>
List-archive: <http://www1.ietf.org/pipermail/tls>
List-help: <mailto:tls-request@lists.ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-post: <mailto:tls@lists.ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
Organization: Spam haters R US
References: <op.tsa3n9ttqrq7tp@nimisha.oslo.opera.com>
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9a4pre) Gecko/20070422 SeaMonkey/1.5a

Yngve N. Pettersen (Developer Opera Software ASA) wrote:
> Hello all,
> 
> I have recently started to see an increasing number of reports about  
> SSL/TLS servers using short Ephermal Diffie-Hellman keys, in some cases  
> very short ones.
> 
> Opera's SSL/TLS client will display warnings to users if the server is  
> using RSA/DH/DSA keys shorter than (currently) 900 bits. 

Do you mean the length of the public value?  or the length of the prime P?

Do you really wish to disallow public values that are low numeric values
even when the prime P is adequately large?

-- 
Nelson B

_______________________________________________
TLS mailing list
TLS at lists.ietf.org
https://www1.ietf.org/mailman/listinfo/tls

Follow-Ups:
- Re: [TLS] Short Ephermal Diffie-Hellman keys
  - From: Bodo Moeller
- Re: [TLS] Short Ephermal Diffie-Hellman keys
  - From: Yngve N. Pettersen (Developer Opera Software ASA)

References:
- [TLS] Short Ephermal Diffie-Hellman keys
  - From: Yngve N. Pettersen (Developer Opera Software ASA)

Prev by Date: Re: [TLS] Short Ephermal Diffie-Hellman keys
Next by Date: Re: [TLS] Short Ephermal Diffie-Hellman keys
Previous by thread: [TLS] RE: Short Ephermal Diffie-Hellman keys
Next by thread: Re: [TLS] Short Ephermal Diffie-Hellman keys
Index(es):
- Date
- Thread

Re: [TLS] Short Ephermal Diffie-Hellman keys

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.