[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[gnutls-dev] Re: Anonymity lost if same DH params re-used for ephemeral
From: |
Simon Josefsson |
Subject: |
[gnutls-dev] Re: Anonymity lost if same DH params re-used for ephemeral RSA/DSS too? |
Date: |
Sun, 21 Dec 2003 12:24:34 +0100 |
User-agent: |
Gnus/5.1003 (Gnus v5.10.3) Emacs/21.3.50 (gnu/linux) |
Nikos Mavroyanopoulos <address@hidden> writes:
> On Sun, Dec 21, 2003 at 09:49:08AM +0100, Simon Josefsson wrote:
>
>> This might not be exactly gnutls specific, but the question grow out
>> of a usage question of your API: is it OK to use the same D-H
>> parameters for both the ANON-DH and DHE-RSA/DSS key exchanges? It
>> takes several seconds to generate the D-H params, so I'd rather not
>> generate two sets if it can be avoided.
> Yes it's perfectly fine to use the same DH parameters. It does
> not weaken the protocol in any way.
Good, thanks for quick response.
Btw, I have verified that 1.0.3 solved my gnutls_bye problem.
Thanks,
Simon