Hosting Provided By

linux-ipsec: Elliptic Curve Systems for Diffie Hellman Key Exchange

From: Hugh Redelmeier <hugh(at)trends.net>
Date: Thu Mar 05 1998 - 00:30:59 EST

Pluto, our ISAKMP/Oakley daemon needs to support stronger encryption. One barrier is the lack of entropy (bits of randomness) created in the Diffie Hellman key exchange. The obvious way to improve this is to implement stronger groups. The obvious ones to implement are the Oakley groups 3 and 4.

These groups are elliptic curve systems. Does anyone have any good, free (GPLed, or able to be GPLed) code to do this? It must not have been produced or come through the USA because then we could not distribute the result to the world.

Failing that, does anyone have any recommended reading for me? I have and am studying:

[Schroeppel] Schroeppel, Richard, et al.; Fast Key Exchange with Elliptic Curve Systems, Crypto '95, Santa Barbara, 1995. Available on-line as ftp://ftp.cs.arizona.edu/reports/1995/TR95-03.ps (and .Z).

This was mentioned in draft-ietf-ipsec-oakley-02.txt

Hugh Redelmeier
hugh@mimosa.com voice: +1 416 482-8253 Received on Thu Mar 5 01:12:14 1998

This message: [ Message body ]
Next message: Richard Guy Briggs: "Re: linux-ipsec: problems, part 3"
Previous message: Hugh Daniel: "linux-ipsec: INTEROP: how to do seprate keys for 3DES and MD5?"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 12:59:28 EDT