[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: DH vs. RSA use for symmetric key exchange

To: "Khaja E. Ahmed" <khaja.ahmed@home.com>
Subject: Re: DH vs. RSA use for symmetric key exchange
From: Bill Sommerfeld <sommerfeld@East.Sun.COM>
Date: Thu, 07 Dec 2000 14:09:48 -0500
cc: "Hugo Krawczyk" <hugo@ee.technion.ac.il>, "ipsec list" <ipsec@lists.tislabs.com>
In-reply-to: Your message of "Thu, 07 Dec 2000 10:45:14 PST." <01d601c0607d$d66efbb0$e4570f18@plstn1.sfba.home.com>
Reply-to: sommerfeld@East.Sun.COM
Sender: owner-ipsec@lists.tislabs.com

> Is PFS intended to cover the risk associated with an RSA private key being
> compromised?  If so, I assume it would apply to DH keys as well if they get
> reused.  An optimization in IKE ( I think ) is the ability to reuse DH keys
> to establish multiple SAs and generate multiple keys.  Is there any
> recommendation on how many SAs can be generated or for how long a DH key can
> be used?

I've never previously seen a suggestion that IKE should use
non-ephemeral DH keys, so it's fair to say, "one DH key, one (phase 1)
SA" and "one DH key, one (phase 2 with pfs) SA".

					- Bill

Follow-Ups:

Re: DH vs. RSA use for symmetric key exchange

From: "Khaja E. Ahmed" <khaja.ahmed@home.com>

References:

Re: DH vs. RSA use for symmetric key exchange

From: "Khaja E. Ahmed" <khaja.ahmed@home.com>

Prev by Date: Re: DH vs. RSA use for symmetric key exchange
Next by Date: RE: DH vs. RSA use for symmetric key exchange
Prev by thread: Re: DH vs. RSA use for symmetric key exchange
Next by thread: Re: DH vs. RSA use for symmetric key exchange
Index(es):
- Main
- Thread