14 Oct
2013
14 Oct
'13
7:08 p.m.
Hello,
from my understanding, using 1024bit DH parameters results in a not sufficiently secure key exchange for DH(E). Therefore I think it would be advisable to have parameters of at least 2048bit . In fact, I would see a great benefit in chosing parameter length arbitrarily.
I also do not see the benefit of parameter regeneration. What were the design goals here?
Thanks,
Jörg Lübbert