Imperfect forward secrecy: how Diffie-Hellman fails in practice

David Adrian

Karthikeyan Bhargavan

[0]

[0]

[0]

[0]

[0]

[0]

[0]

[0]

Luke Valenta

Benjamin VanderSloot

[0]

Eric Wustrow

[0]

Communications of the ACM, pp. 106-114, 2018.

Cited by: 410|Bibtex|Views105|DOI:https://doi.org/10.1145/3292035

Other Links: dl.acm.org

Abstract:

We investigate the security of Diffie-Hellman key exchange as used in popular Internet protocols and find it to be less secure than widely believed. First, we present Logjam, a novel flaw in TLS that lets a man-in-the-middle downgrade connections to "export-grade" Diffie-Hellman. To carry out this attack, we implement the number field sie...More

Code:

Data:

Full Text (Upload PDF)

PPT (Upload PPT)

Your rating :