RE: [TLS] Re: Short Ephermal Diffie-Hellman keys

To: <simon at josefsson.org>, <tls at lists.ietf.org>
Subject: RE: [TLS] Re: Short Ephermal Diffie-Hellman keys
From: <Pasi.Eronen at nokia.com>
Date: Tue, 15 May 2007 16:50:13 +0300
Cc:
In-reply-to: <87y7jqckh2.fsf@mocca.josefsson.org>
List-archive: <http://www1.ietf.org/pipermail/tls>
List-help: <mailto:tls-request@lists.ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-post: <mailto:tls@lists.ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
References: <op.tsa3n9ttqrq7tp@nimisha.oslo.opera.com><46488F24.4020304@pobox.com><B356D8F434D20B40A8CEDAEC305A1F24041FA7FF@esebe105.NOE.Nokia.com><4649A374.8040805@drh-consultancy.demon.co.uk> <87y7jqckh2.fsf@mocca.josefsson.org>
Thread-index: AceW8MBDUflNK2N8TuWjS/DDI/ZxNAABqxrQ
Thread-topic: [TLS] Re: Short Ephermal Diffie-Hellman keys

Simon Josefsson wrote:

> Some applications that use GnuTLS (I believe Exim is an example)
> have a separate script invoked once every day (or similar) to
> re-generate the DH parameters.  This approach works fine even if
> getting the entropy is a bottle-neck, since it allows servers to
> continue to run using the earlier DH parameters until the new
> parameters have been generated.

BTW, why do you generate new DH parameters in the first place?

Earlier I suggested that TLS 1.2 spec should probably recommend just
hardcoding some of the groups from RFC 3526 (i.e., recommend against
generating DH parameters). This would simplify code and provide less
opportunities for getting things wrong (e.g. very small primes seen by
Yngve; small subgroup attacks; etc.).

http://www1.ietf.org/mail-archive/web/tls/current/msg01115.html

Best regards,
Pasi

_______________________________________________
TLS mailing list
TLS at lists.ietf.org
https://www1.ietf.org/mailman/listinfo/tls

Follow-Ups:
- [TLS] Re: Short Ephermal Diffie-Hellman keys
  - From: Simon Josefsson

References:
- [TLS] Short Ephermal Diffie-Hellman keys
  - From: Yngve N. Pettersen (Developer Opera Software ASA)
- Re: [TLS] Short Ephermal Diffie-Hellman keys
  - From: Mike
- RE: [TLS] Short Ephermal Diffie-Hellman keys
  - From: Pasi.Eronen
- Re: [TLS] Short Ephermal Diffie-Hellman keys
  - From: Dr Stephen Henson
- [TLS] Re: Short Ephermal Diffie-Hellman keys
  - From: Simon Josefsson

Prev by Date: Re: [TLS] Short Ephermal Diffie-Hellman keys
Next by Date: Re: [TLS] Short Ephermal Diffie-Hellman keys
Previous by thread: [TLS] Re: Short Ephermal Diffie-Hellman keys
Next by thread: [TLS] Re: Short Ephermal Diffie-Hellman keys
Index(es):
- Date
- Thread

RE: [TLS] Re: Short Ephermal Diffie-Hellman keys

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.