Re: [TLS] Short Ephermal Diffie-Hellman keys

To: Bodo Moeller <bmoeller at acm.org>
Subject: Re: [TLS] Short Ephermal Diffie-Hellman keys
From: jimmy <jimmyb at huawei.com>
Date: Tue, 15 May 2007 18:44:01 +0530
Cc: tls at lists.ietf.org
In-reply-to: <20070515130804.GA15682@tau.invalid>
List-archive: <http://www1.ietf.org/pipermail/tls>
List-help: <mailto:tls-request@lists.ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-post: <mailto:tls@lists.ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
References: <op.tsa3n9ttqrq7tp@nimisha.oslo.opera.com> <4648AEA2.3020506@bolyard.com> <20070515130804.GA15682@tau.invalid>
User-agent: Thunderbird 2.0.0.0 (Windows/20070326)

Bodo Moeller wrote:
[snip]


While this really is about the prime P and not the public value, it
wouldn't be wrong to disallow small public values.  In practice the
public value won't be too much shorter than the public value unless


you meant 'public value won't be too much shorter than the prime' right?

something weird (and presumably insecure) is going on.

It's only shorter secret values (DH exponents) that can be used in a
secure way.  But then the client coudn't easily reject these anyway.

Bodo

-jb
--
The biggest problem with communication is the illusion that it has occurred.


_______________________________________________
TLS mailing list
TLS at lists.ietf.org
https://www1.ietf.org/mailman/listinfo/tls

Follow-Ups:
- Re: [TLS] Short Ephermal Diffie-Hellman keys
  - From: Bodo Moeller

References:
- [TLS] Short Ephermal Diffie-Hellman keys
  - From: Yngve N. Pettersen (Developer Opera Software ASA)
- Re: [TLS] Short Ephermal Diffie-Hellman keys
  - From: Nelson B Bolyard
- Re: [TLS] Short Ephermal Diffie-Hellman keys
  - From: Bodo Moeller

Prev by Date: Re: [TLS] Short Ephermal Diffie-Hellman keys
Next by Date: Re: [TLS] Short Ephermal Diffie-Hellman keys
Previous by thread: Re: [TLS] Short Ephermal Diffie-Hellman keys
Next by thread: Re: [TLS] Short Ephermal Diffie-Hellman keys
Index(es):
- Date
- Thread

Re: [TLS] Short Ephermal Diffie-Hellman keys

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.