[Ach] Improving Applied Crypto Hardening Draft
James Cloos
cloos at jhcloos.com
Fri Jan 10 23:14:15 CET 2014
>>>>> "KR" == Kurt Roeckx <kurt at roeckx.be> writes:
>> DHE == Diffie-Hellman (key) Exchange
>> EDH == Ephemeral Diffie-Hellman (key exchange)
>> ADH == Anonymous Diffie-Hellman (key exchange)
KR> As far as I understand it, all 3 of those are actually ephemeral
KR> variants, as opposed to the "ECDH" and "DH" versions where there
KR> is no key exchange but the public key is in the certificate
KR> itself. But then I think nobody uses certificates like that.
Evidently some do.
Search for Brian's reply to my question about ecdsa on the:
http://mozilla.6506.n7.nabble.com/Proposal-to-Remove-legacy-TLS-Ciphersuits-Offered-by-Firefox-td302861.html
thread of mozilla.dev.tech.crypto (aka dev-tech-crypto at lists.mozilla.org).
(Searching in that page for "are now offering" gets there.)
-JimC
--
James Cloos <cloos at jhcloos.com> OpenPGP: 1024D/ED7DAEA6
More information about the Ach
mailing list