2 Nov
2013
2 Nov
'13
3:28 p.m.
On 14.10.2013, at 19.08, Jörg Lübbert <j.luebbert@kaladix.org> wrote:
from my understanding, using 1024bit DH parameters results in a not sufficiently secure key exchange for DH(E). Therefore I think it would be advisable to have parameters of at least 2048bit . In fact, I would see a great benefit in chosing parameter length arbitrarily.
I also do not see the benefit of parameter regeneration. What were the design goals here?