All Questions
Tagged with tls diffie-hellman
109
questions
0
votes
0
answers
26
views
Define DH parametes in python-mbedtls [migrated]
I'm using python-mbedtls library - https://github.com/Synss/python-mbedtls/tree/master
my goal is to create handshake with different cipher suites,
I've managed to do so with the given server and ...
5
votes
2
answers
7k
views
Why do I get the error "dh key too small" when the RSA key is 2048 bits?
When I try to connect to the site https://api-mte.itespp.org with OpenSSL (openssl s_client -connect api-mte.itespp.org:443 -brief), it complains that the DH key is too small. But when I analyze its ...
- 153
1
vote
2
answers
198
views
Evading authenticated diffie hellman with MITM
I understand that in a non-authenticated Diffie-Hellman setup, a man-in-the-middle attack can occur. Now i'm curious about the feasibility of the following scenario:
Let's assume a situation where www....
- 11
1
vote
2
answers
161
views
Does saving of ECDHE keypairs to HSM increase security of TLS?
When ephemeral Diffie-Hellman (DHE) is used with TLS, the key-exchange key can/will be discarded after a key-exchange. right?
Is there good reason to use HSM for generating and storing DHE key, when ...
- 303
2
votes
1
answer
2k
views
What's the use of HMAC or hashing in TLS or SSL inspection
In the Server hello, I got the below Cipher suite
TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
Now, I know that we are using DHE for the key exchange, we are using RSA for the authentication, and AES for the ...
-1
votes
1
answer
524
views
What Keys Are Used in TLS 1.3?
In TLS 1.2 the messages sent by client are encrypted under ClientWrite, and the messages send by server are encrypted under ServerWrite.
What about TLS 1.3? I don't see any Pre-Master-Secret being ...
- 19
1
vote
1
answer
2k
views
disabledAlgorithms 'DH keySize < 2048' ignored
I have a JBoss application running on openjdk version "1.8.0_212" where I can influence the security settings via the java.security file. However, using this line:
jdk.tls.disabledAlgorithms=...
- 13
2
votes
1
answer
240
views
TLSv1: should DHE be enabled?
I want my web server to be as compatible as possible with old clients, even clients without TLSv1.2 and ECDHE support.
What ciphers should be supported for legacy clients, and in what order should ...
- 141
4
votes
1
answer
5k
views
TLS 1.3 RSA key exchange
I have some confusion between the different public and private keys that are used in a TLS 1.3 connection. When a client makes a request to a server, I've always thought that a server's TLS x509 ...
- 143
2
votes
3
answers
2k
views
I don't understand TLS 1.3 allowing PSK
TLS 1.3 removes the use of non-ephemeral Diffie-Hellman, which is great! But it still allows PSK.
I'm not as familiar with PSK configuration but wouldn't that mean TLS 1.3 still is allowing the use of ...
1
vote
1
answer
5k
views
Explain the three versions of Diffie-Hellman used in SSL/TLS
I understand how Diffie-Hellman algorithm can be used to agree on a common key between a client and server.
I am struggling to understand the three variations of Diffie_Hellman - Anonymous Diffie-...
- 113
0
votes
1
answer
4k
views
Diffie–Hellman key exchange in TLS 1.3
I am reading about the Diffie–Hellman key exchange in TLS 1.3. So the first step here is that the two parts Alice and Bob t agree on a large prime p and a nonzero integer g modulo p. Then Alice and ...
- 51
0
votes
0
answers
433
views
symmetric key generation in TLS 1.3
Am trying to understand the phase where the symmetric key is getting generating. From what I am understanding Diffie-Hellman is used to derive the symmetric key in TLS1.3
I am reading this tls ...
- 51
0
votes
1
answer
702
views
How to generate ffdhe from rfc7919
Everyone recommends to use the pre-defined ffdhe groups from https://www.rfc-editor.org/rfc/rfc7919
There are multiple sources (for example mozilla) where I can download the DH PARAMETERS file but how ...
- 103
2
votes
0
answers
437
views
What will be the key size for rsa, ecdhe and ecdsa from the cipher suite given?
From the cipher suites tls_rsa_with_aes_128_cbc_sha256 and tls_ecdhe_ecdsa_with_aes_128_cbc_sha256 how do I know what will be the RSA , ECDHE, and ECDSA key support in IBM cloud Watson?
here is the ...
