DH: pubkeys for p and g
martin f krafft
madduck at madduck.net
Wed Jun 25 17:24:12 EDT 2003
The Check Point Firewall-1 Docs insist, that the public keys be used
for p and g for the Oakley key exchange. I ask you: is this
possible?
- which of the two pubkeys will be p, which g?
- are they both always primes?
- are they both always suitable generators mod p?
It just seems to me that Check Point isn't entirely sure themselves
here. I'd appreciate a short cleanup...
To my knowledge, g and p are globally defined, either in DH Groups
(which are nothing but pre-defined g's and p's, right?), or
otherwise set constant. Am I wrong about this?
Thanks.
--
martin; (greetings from the heart of the sun.)
\____ echo mailto: !#^."<*>"|tr "<*> mailto:" net at madduck
invalid PGP subkeys? use subkeys.pgp.net as keyserver!
"one should never do anything that
one cannot talk about after dinner."
-- oscar wilde
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20030625/10d56069/attachment.pgp>
More information about the cryptography
mailing list