Re: Help with DH key exchange on SSHv2.0

To: Manik Surtani <manik.surtani%conchango.com@localhost>
Subject: Re: Help with DH key exchange on SSHv2.0
From: Markus Friedl <markus%openbsd.org@localhost>
Date: Tue, 2 Jul 2002 13:19:37 +0200

On Tue, Jul 02, 2002 at 12:11:29PM +0100, Manik Surtani wrote:
> Yes, I have already computed H - and have it as a byte[].  But does it 
> need to be encoded as a mpint, or a string, or just raw bytes for the 
> HASH (K || H || "A" || session_id) operation?

just raw bytes.

> I have already done SSH_MSG_KEXDH_INIT and have received 
> SSH_MSG_KEXDH_REPLY.  Is the next step just SSH_MSG_NEWKEYS, then?

yes.

> 3)  The keys generated using HASH(K || H || "A" || session_id) - which 
> key do I use for the SSH-AUTH procedures?  Is it Initial IV client to 
> server?

for the public key authentication you need the hash H (aka
the session id).

References:
- Help with DH key exchange on SSHv2.0
  - From: Manik Surtani
- Re: Help with DH key exchange on SSHv2.0
  - From: Markus Friedl
- Re: Help with DH key exchange on SSHv2.0
  - From: Manik Surtani

Prev by Date: Re: Help with DH key exchange on SSHv2.0
Next by Date: Timers and Timeouts in the SSH Transport Protocol
Previous by Thread: Re: Help with DH key exchange on SSHv2.0
Next by Thread: Timers and Timeouts in the SSH Transport Protocol
Indexes:

Home | Main Index | Thread Index | Old Index