TLS DHE ciphersuites
E719310
TLS DHE ciphersuites are Transport Layer Security cipher suites that use ephemeral finite-field Diffie–Hellman key exchange to provide forward secrecy between communicating parties.
Statements (49)
| Predicate | Object |
|---|---|
| instanceOf |
TLS cipher suite family
ⓘ
cryptographic protocol component ⓘ |
| canBeConfiguredWith | server-preferred cipher suite ordering ⓘ |
| canUseAuthenticationAlgorithm |
DSA
NERFINISHED
ⓘ
ECDSA NERFINISHED ⓘ RSA NERFINISHED ⓘ |
| canUseGroupType |
IETF standardized finite-field DH groups
ⓘ
custom finite-field DH groups ⓘ |
| cipherSuiteNamePrefix | TLS_DHE_ ⓘ |
| contrastsWith |
TLS ECDHE ciphersuites
NERFINISHED
ⓘ
TLS RSA key exchange ciphersuites ⓘ |
| definedIn |
TLS 1.0 specification
NERFINISHED
ⓘ
TLS 1.1 specification NERFINISHED ⓘ TLS 1.2 specification ⓘ |
| deprecatedStatus | discouraged in many modern configurations in favor of ECDHE ⓘ |
| exampleCipherSuite |
TLS_DHE_DSS_WITH_AES_128_CBC_SHA
ⓘ
TLS_DHE_DSS_WITH_AES_256_CBC_SHA ⓘ TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA ⓘ TLS_DHE_RSA_WITH_AES_128_CBC_SHA ⓘ TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 ⓘ TLS_DHE_RSA_WITH_AES_256_CBC_SHA ⓘ TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ⓘ |
| hasPerformanceCharacteristic | slower than ECDHE at comparable security levels ⓘ |
| hasSecurityProperty | protects past sessions if server private key is compromised ⓘ |
| keyExchangeGroupType | finite-field Diffie–Hellman group ⓘ |
| keyExchangeType | ephemeral ⓘ |
| mayBeDisabledFor |
compatibility with TLS 1.3-only configurations
ⓘ
performance reasons ⓘ |
| negotiatedDuring | TLS handshake ⓘ |
| notDefinedIn | TLS 1.3 specification NERFINISHED ⓘ |
| providesProperty | forward secrecy ⓘ |
| recommendedKeySize | at least 2048-bit DH modulus for modern security ⓘ |
| relatedAttack | Logjam attack NERFINISHED ⓘ |
| requiresClientCapability | support for ephemeral finite-field Diffie–Hellman ⓘ |
| requiresParameter | Diffie–Hellman group parameters (p,g) ⓘ |
| requiresServerCapability | support for ephemeral finite-field Diffie–Hellman ⓘ |
| securityDependsOn | discrete logarithm problem hardness in chosen finite field ⓘ |
| stillUsedIn |
some TLS 1.1 deployments
ⓘ
some TLS 1.2 deployments ⓘ some legacy TLS 1.0 deployments ⓘ |
| usedInProtocol |
Datagram Transport Layer Security (DTLS)
NERFINISHED
ⓘ
Transport Layer Security (TLS) NERFINISHED ⓘ |
| usesAuthentication | certificate-based authentication ⓘ |
| usesForConfidentiality | symmetric encryption algorithms negotiated in the cipher suite ⓘ |
| usesForIntegrity | message authentication codes or AEAD modes negotiated in the cipher suite ⓘ |
| usesKeyExchangeAlgorithm | ephemeral Diffie–Hellman over finite fields (DHE) NERFINISHED ⓘ |
| usesOperation | modular exponentiation ⓘ |
| vulnerableIf |
Diffie–Hellman parameters are reused insecurely
ⓘ
weak or small Diffie–Hellman groups are used ⓘ |
Referenced by (1)
Full triples — surface form annotated when it differs from this entity's canonical label.
Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for Transport Layer Security (TLS)
→
relatedTo
→
TLS DHE ciphersuites
ⓘ