[Operators] Fwd: [jdev] TLS Everywhere

Peter Saint-Andre stpeter at stpeter.im
Tue Oct 29 18:50:44 UTC 2013


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 10/29/13 12:25 PM, Dave Cridland wrote:
> On Tue, Oct 29, 2013 at 6:17 PM, Jonas Wielicki 
> <xmpp-operators at sotecware.net
> <mailto:xmpp-operators at sotecware.net>> wrote:

> There is cipher suites with forward secrecy. For me on Fedora,
> this means diffie-hellman, as elliptic curves are still
> problematic[2] (and I'm not yet sure whether they're to trust, but
> I guess, noone is). I wonder whether this is considered okay?
> 
> I thought (possibly wrongly) that all PFS suites were based around
> a DH exchange, whether EC or not.

Correct -- forward secrecy (I don't call it "perfect") isn't tied to
elliptic curves.

Peter

- -- 
Peter Saint-Andre
https://stpeter.im/


-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.19 (Darwin)
Comment: GPGTools - http://gpgtools.org
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
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=vhci
-----END PGP SIGNATURE-----


More information about the Operators mailing list