Is it possible to "hack" Diffie-Hellman by knowing the prime number and the generator parameters?
I am trying to understand the Diffie-Hellman (DH) algorithm because I would like to have two computers communicating with each other but without a third one knowing what they are saying, but also exchanging the secret key they will use in an insecure channel.
The thing is that the third one also knows how the DH will process, namely, the constant parameters. More specifically p and g:
So the question is, if I know p and g, can I discover that Bob and Alice will use 8 as their secret key?
No You can't, to compute the secret key you must first be able to compute a (Alice's secret key) or b( Bob's secret key) this will require the evesdropper to compute the discrete logarithm and since there isn't any known efficient algorithm that can compute that, then Deffie_Hellmen is pretty secure, and the third party (the evesdropper) will never know that 8 is the secret key. (note that the right selection of p and g is critical for making a secure key exchange).
- Password hashing, salt and storage of hashed values
- Salt Generation and open source software
- Secure Memory Allocator in C++
- Securing JWT tokens against attackers
- How to deal with a slow SecureRandom generator?
- CryptographicException: Access denied - How to give access on User store?
- Implementing Custom Expression Handling with Spring Security 6
- Restricting access to static files in Django/Nginx
- Does RabbitMQ allow Audit Logging
- Powershell Set-MpPreference -DisableRealtimeMonitoring $true not working correctly
- Why are iframes considered dangerous and a security risk?
- Secure Google Cloud Functions http trigger with auth
- How do I get the currently loggedin Windows account from an ASP.NET page?
- Error Importing SSL certificate : Not an X.509 Certificate
- Full text search on encrypted data
- It is necessary to send the JWT token from the browser page to the server
- Is it possible to use double @ in an email address?
- How to replicate the RuntimeDefault seccompProfile in Kubernetes to run in Docker?
- Difference between processes running in kernel mode and running as root?
- Why is it okay to transmit authentication/session cookies over plaintext?
- How to handle .env.local in a next js typescript file?
- How does Maven 3 password encryption work?
- Do we need encrypt session id before saving it into database
- Any point in using a paid threat intelligence service over Google's Lookup API for detecting malicious URLs?
- How to securely update configuration for root password in yocto?
- how to secure and encrypt setting.xml paswords file in maven?
- How to convert a PKCS#8 encoded RSA key into PKCS#1 in Java?
- Vector securely erasing its memory
- How to safely run user-supplied Javascript code inside the browser?
- curl - Is data encrypted when using the --insecure option?