key-exchange – Page 2 – WindowsTechs.com

Explanation of Burmester-Desmedt group key exchange and Ingemarsson-Tang-Wong (ITW) group key exchange algorithm [migrated]

Posted on December 9, 2022 by Haidepzai

I know that both algorithms are similar to the Diffie-Hellman key exchange and are used for exchanging secret keys in a group but I still cannot figure out the key differences between both algorithms.
Is the difference only in the number o… Continue reading Explanation of Burmester-Desmedt group key exchange and Ingemarsson-Tang-Wong (ITW) group key exchange algorithm [migrated]→

Enabling ECDH KeyExchangeAlgorithm in Windows Schannel while disabling CBC based ciphersuites

Posted on November 19, 2022 by kype

On our Windows Servers, we have disabled the following key exchange algorithms in registry
SCHANNEL\KeyExchangeAlgorithms\ECDH
SCHANNEL\KeyExchangeAlgorithms\PKCS

This leaves us with only 2 available Cipher Suites that could be offered i… Continue reading Enabling ECDH KeyExchangeAlgorithm in Windows Schannel while disabling CBC based ciphersuites→

How server key limits protocols and ciphers used? [duplicate]

Posted on November 8, 2022 by Ivan Onyshchenko

There is a server (app) that uses OpenSSL to allow clients establish secure connection.
The certificate info for server public key is:
Certificate:
Data:
Version: 1 (0x0)
Serial Number: 1 (0x1)
Signature Algorit… Continue reading How server key limits protocols and ciphers used? [duplicate]→

Can a VPN connection be detected (and get blocked) even after the key exchange happens

Posted on October 16, 2022 by Emily1001

If the key exchange happens when using lets say Wireguard or any other protocols that use IKA, and the connection never drops, could the ISP still detect the VPN traffic using Deep Packet Inspection?

Continue reading Can a VPN connection be detected (and get blocked) even after the key exchange happens→

Can a man in the middle tell what kind of encryption you’re using from a key exchange? [migrated]

Posted on October 5, 2022 by Beefster

Encryption schemes typically are built on the idea that even if a man in the middle attacker knows exactly what kind of encryption you’re using, they cannot decrypt your messages without the key.
As far as I’m aware, the only mechanism whi… Continue reading Can a man in the middle tell what kind of encryption you’re using from a key exchange? [migrated]→

What is the right way to transfer public-private keypairs over intranet?

Posted on June 6, 2022 by Larry Martin

First asked on StackOverflow and referred to this board, here:
I have an embedded system (Netburner 5441x) that encodes public-private RSA keypairs into devices. I have ported OpenSSL into the system but the embedded processor cannot make … Continue reading What is the right way to transfer public-private keypairs over intranet?→

Need to know the key exchange value of the following cipher suites [migrated]

Posted on June 3, 2022 by SB_tech

I need to know the key exchange of the DHE-DSS cipher suites, will it be the same as mentioned in DHE-RSA?

Continue reading Need to know the key exchange value of the following cipher suites [migrated]→

Need to know the key exchange value of the following cipher suites [migrated]

Posted on June 3, 2022 by SB_tech

I need to know the key exchange of the DHE-DSS cipher suites, will it be the same as mentioned in DHE-RSA?

Continue reading Need to know the key exchange value of the following cipher suites [migrated]→

Key distribution protocol involves only 2 parties, given E[k1,E(k2,m)]=E[k2, E(k1, m)]

Posted on May 9, 2022 by Edward

Given an one-key cipher such that:
E[k1,E(k2,m)]=E[k2, E(k1, m)]
Is there any key distribution protocol that involves only two parties (Alice and Bob) without the key distribution center?
The protocol should allow Alice to send a session k… Continue reading Key distribution protocol involves only 2 parties, given E[k1,E(k2,m)]=E[k2, E(k1, m)]→

IIS Crypto 3.2 not getting rid of Diffie-Hellman algorithms of less than 2048-bits

Posted on May 5, 2022 by Mick8695

I’m trying to stop a server using Diffie Hellman key exchanges of less than 2048 bits, but I’m getting confusing results.
I’ve run
Get-TlsCipherSuite | Format-Table Name, Exchange, Cipher, Hash, Certificate
and I can see
TLS_DHE_RSA_WITH_A… Continue reading IIS Crypto 3.2 not getting rid of Diffie-Hellman algorithms of less than 2048-bits→