Neil Proctor np at
Wed Oct 9 11:32:53 UTC 2019


I had a question regarding the ECC CDH (KAS) algorithm listed on Page 15 of

Which mode is used for the Key Agreement Scheme?

Full Unified
Full MVQ
Ephemeral Unified
One Pass Unified
One Pass MVQ
One Pass DH
Static Unified

And which of these functions are performed?

Domain Parameter Generation
Domain Parameter Verification
Key Pair Generation
Full Validation (as specified in SP 800-131A, section and/or
Partial Validation (as specified in SP 800-131A, section
Key Regeneration

I'm very new to Diffie Hellman, and I'm trying to learn more about it in regards to how it conforms with some of the NIST guidance and FIPS certification.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the openssl-users mailing list