Imperfect Forward Secrecy: How Diffie-Hellman Fails in Practice
ACM Conference on Computer and Communications Security, 2015.
We investigate the security of Diffie-Hellman key exchange as used in popular Internet protocols and find it to be less secure than widely believed. First, we present Logjam, a novel flaw in TLS that lets a man-in-the-middle downgrade connections to \"export-grade\" Diffie-Hellman. To carry out this attack, we implement the number field s...More
PPT (Upload PPT)