Actions
Feature #28605
closedSecurity weakness : Diffie-Hellman key
Start date:
02/22/2018
Due date:
% Done:
0%
Estimated time:
Description
Improve the security of Lavoisier for Diffie-Hellman (DH) key exchange parameters .
Diffie-Hellman key exchange is a popular cryptographic algorithm that allows Internet protocols to agree on a shared key and negotiate a secure connection. It is fundamental to many protocols including HTTPS, SSH, IPsec, SMTPS, and protocols that rely on TLS.
If you have a web or mail server, you should disable support for export cipher suites and use a 2048-bit Diffie-Hellman group.
Updated by Schwarz Lionel almost 7 years ago
- Category set to Service
- Status changed from In progress to Resolved
- Assigned To set to Schwarz Lionel
Il faut ajouter dans lavoisier-service.properties:
jdk.tls.ephemeralDHKeySize=2048
Actions