OpenSSH introduces curve25519-sha256@libssh.org key exchange ! 1


A while back, I introduced a new key exchange mechanism, “curve25519-sha256@libssh.org” in our code base. The reasons were explained together with the specifications. In a nutshell, this key exchange function is based on DJB’s Curve25519 elliptic curve Diffie-Hellman key exchange. This algorithm does not rely on NIST-based curves and gives us more security confidence against a possible backdoor in nistp-256 curve.
Today is a big day for us because OpenSSH team approved my patch and made curve25519-sha256@libssh.org the default key exchange !

Flattr this!


Leave a comment

Your email address will not be published. Required fields are marked *


*

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>

Post comment

What is Persona?

One thought on “OpenSSH introduces curve25519-sha256@libssh.org key exchange !