[Cryptography] Chrome dropping DHE (was Re: [FORGED] Re: ratcheting DH strengths over time)
Viktor Dukhovni
cryptography at dukhovni.org
Sat Nov 21 15:40:46 EST 2015
> On Nov 21, 2015, at 8:24 AM, Perry E. Metzger <perry at piermont.com> wrote:
>
>> https://groups.google.com/a/chromium.org/forum/#!topic/security-dev/dYyhKHPnrI0
>
> I can no longer recall (TLS mechanics are complicated), but is there
> no less radical way to impose a minimum DHE group size?
Nothing interoperable. Until TLS 1.3 (i.e. not at this time), the prime sizes
are not negotiated. If the server chooses DHE, you either accept its prime or
close the connection and retry without DHE.
--
Viktor.
More information about the cryptography
mailing list