Talk:Diffie-Hellman parameters

From OpenSSLWiki
Revision as of 12:00, 16 January 2014 by Jwalton (talk | contribs) (Added infor on PEM encoding)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigationJump to search
The printable version is no longer supported and may have rendering errors. Please update your browser bookmarks and please use the default browser print function instead.

It looks like OpenSSL uses PEM encodings by default. For example:

$ grep -R "BEGIN DH PARAMETERS" *
apps/dh1024.pem:-----BEGIN DH PARAMETERS-----
apps/dh512.pem:-----BEGIN DH PARAMETERS-----
apps/dh2048.pem:-----BEGIN DH PARAMETERS-----
apps/dh4096.pem:-----BEGIN DH PARAMETERS-----
crypto/dh/dh1024.pem:-----BEGIN DH PARAMETERS-----
crypto/dh/dh512.pem:-----BEGIN DH PARAMETERS-----
crypto/dh/dh2048.pem:-----BEGIN DH PARAMETERS-----
crypto/dh/dh2048.pem:-----BEGIN DH PARAMETERS-----
crypto/dh/dh192.pem:-----BEGIN DH PARAMETERS-----
crypto/dh/dh4096.pem:-----BEGIN DH PARAMETERS-----
demos/bio/server.pem:-----BEGIN DH PARAMETERS-----
doc/apps/dhparam.pod: -----BEGIN DH PARAMETERS-----

And I could not find any pre-encoded binary representations like in the example on this page.

Should we add a sampling of IETF and NIST (2048, 3072, 4096) that are suitable for copy/paste into a program?