[Ach] New study on Forward Secrecy
Kurt Roeckx
kurt at roeckx.be
Wed Dec 31 14:36:56 CET 2014
On Wed, Dec 31, 2014 at 01:24:33AM +0100, christian mock wrote:
> On Tue, Dec 30, 2014 at 06:25:44PM +0100, Aaron Zauner wrote:
>
> > We should - maybe - think about removing DHE (or, at the very least, not
> > prefer it over ECDHE handshakes anymore) from our current
>
> I'm against dropping DHE, as the problem is not a flaw in DHE as such,
> but in implementations. That the problem is so wide-spread is again
> attributable to openssl.
If you think there is a problem in the OpenSSL documentation or
code, please submit a bug report to rt at openssl.org
Kurt
More information about the Ach
mailing list