IETF-SSH archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
Re: DH Group Exchange in SSH (RFC 4419) - Avoiding Backsdoors
On Thu, 29 Sep 2016, Mark D. Baushke wrote:
> Hi,
>
> Question:
>
> Should RFC 4419 - "Diffie-Hellman Group Exchange for the Secure Shell
> (SSH) Transport Layer Protocol" be deprecated?
>
> Background:
>
> The paper "How to Backdoor Diffie-Hellman" by David Wong
> https://eprint.iacr.org/2016/644.pdf describes two ways
> of creating a Nobody-But-Us (NOBUS) Diffie-Hellman backdoor:
NOBUS backdoors aren't the only concern; another motivation was
logjam-style precomputation attacks.
-d
Home |
Main Index |
Thread Index |
Old Index