[openssl-users] Why openssl 1.0.1p accepts composite $q$ in DSA?
Georgi Guninski
guninski at guninski.com
Wed Sep 9 11:55:10 UTC 2015
On Wed, Sep 09, 2015 at 07:45:16AM -0400, Jeffrey Walton wrote:
> Hi Georgi,
>
> Sorry to go offlist...
>
> Also keep in mind that the IETF has effectively deprecated the DH
> parameters in PKIX certificates. In fact, they moved to fixed DH
> groups to avoid the option dance between client and server; and that
> has the benefit that the parameters can be validated offline. As for
> DSA, the IETF is killing it off, too.
>
> See, for example,
> https://tools.ietf.org/html/draft-gillmor-tls-negotiated-dl-dhe-00 and
> https://www.ietf.org/mail-archive/web/tls/current/msg17489.html
> (archive of latter at
> https://www.ietf.org/mail-archive/web/tls/current/maillist.html).
>
> Jeff
>
10x, might try to see these later.
the issue appears still alive in openssl or am i
missing something?
More information about the openssl-users
mailing list