[Curdle] I-D Action: draft-ietf-curdle-ssh-dh-group-exchange-06.txt
internet-drafts@ietf.org Fri, 22 September 2017 17:07 UTC
Return-Path: <internet-drafts@ietf.org>
X-Original-To: curdle@ietf.org
Delivered-To: curdle@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 995B71342E0; Fri, 22 Sep 2017 10:07:48 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Cc: curdle@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 6.62.1
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <150610006853.16577.6958221904913177758@ietfa.amsl.com>
Date: Fri, 22 Sep 2017 10:07:48 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/curdle/mh-nKninxu6B23M7GytJVtLFPF4>
Subject: [Curdle] I-D Action: draft-ietf-curdle-ssh-dh-group-exchange-06.txt
X-BeenThere: curdle@ietf.org
X-Mailman-Version: 2.1.22
List-Id: "List for discussion of potential new security area wg." <curdle.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/curdle>, <mailto:curdle-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/curdle/>
List-Post: <mailto:curdle@ietf.org>
List-Help: <mailto:curdle-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/curdle>, <mailto:curdle-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 22 Sep 2017 17:07:49 -0000
A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the CURves, Deprecating and a Little more Encryption WG of the IETF.
Title : Increase SSH minimum recommended DH modulus size to 2048 bits
Authors : Loganaden Velvindron
Mark D. Baushke
Filename : draft-ietf-curdle-ssh-dh-group-exchange-06.txt
Pages : 4
Date : 2017-09-22
Abstract:
The Diffie-Hellman (DH) Group Exchange for the Secure Shell (SSH)
Transport layer Protocol specifies that servers and clients should
support groups with a modulus length of k bits, where the recommended
minimum value is 1024 bits. Recent security research has shown that
a minimum value of 1024 bits is insufficient against state-sponsored
actors, and possibly any organization with enough computing
resources. As such, this document formally updates the specification
such that the minimum recommended value for k is 2048 bits and the
group size is 2048 bits at minimum. This RFC updates RFC4419 which
allowed for DH moduli less than 2048 bits.
The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-curdle-ssh-dh-group-exchange/
There are also htmlized versions available at:
https://tools.ietf.org/html/draft-ietf-curdle-ssh-dh-group-exchange-06
https://datatracker.ietf.org/doc/html/draft-ietf-curdle-ssh-dh-group-exchange-06
A diff from the previous version is available at:
https://www.ietf.org/rfcdiff?url2=draft-ietf-curdle-ssh-dh-group-exchange-06
Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.
Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/
- [Curdle] I-D Action: draft-ietf-curdle-ssh-dh-gro… internet-drafts