Diffie-Hellman Questions

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Subject: Diffie-Hellman Questions
From: rsalz@xxxxxxxxxx (Salz, Rich)
Date: Wed, 25 May 2016 22:39:33 +0000
In-reply-to: <20160525204106.GB3300@mournblade.imrryr.org>
References: <34db33c7-88e2-0bcd-92b5-114d01b0697c@gemtalksystems.com> <23544be40f4647c986ddd11e8df421f0@usma1ex-dag1mb1.msg.corp.akamai.com> <20160525204106.GB3300@mournblade.imrryr.org>

> NO, Rich is making a mistake, ADH is ephemeral of necessity, since without
> long-term keys in certificates it is impossible to use long-term keys whose
> disclosure might later compromise confidentiality.

Except that your code can always use the same keypair if it screws up the callback.  And that's what I meant.

But Viktor's advice is spot-on.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

References:
- Diffie-Hellman Questions
  - From: Norm Green
- Diffie-Hellman Questions
  - From: Salz, Rich
- Diffie-Hellman Questions
  - From: Viktor Dukhovni

Prev by Date: Diffie-Hellman Questions
Next by Date: openssl-1.1.0 - Linker error on Windows
Previous by thread: Diffie-Hellman Questions
Next by thread: Certificate Transparency: OCSP response
Index(es):
- Date
- Thread

[Index of Archives] [Linux ARM Kernel] [Linux ARM] [Linux Omap] [Fedora ARM] [IETF Annouce] [Security] [Bugtraq] [Linux] [Linux OMAP] [Linux MIPS] [ECOS] [Asterisk Internet PBX] [Linux API]

Powered by Linux