[Cryptography] IPsec DH parameters, other flaws
Peter Gutmann
pgut001 at cs.auckland.ac.nz
Mon Jul 6 22:04:44 EDT 2020
Paul Wouters <paul at cypherpunks.ca> writes:
>And if it makes you feel better, once I investigated the history and lack of
>justification of RFC 5114, which Steve Kent admitted to having just forwarded
>from NSA/BNN to IETF without explanation, I pushed to kill the whole thing.
>It's now dead.
Interesting, so the RFC 5114 values are NSA-generated rather than NIST as the
RFC implies? I'd always avoided them because, apart from not serving any
obvious purpose, they also use incredibly inefficient values for g, making
them a non-starter for any real use.
Peter.
More information about the cryptography
mailing list