[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: xxx-draft-spec-for-TLS-normalization.txt



> As a security precaution, care must be taken to ensure that we do not generate
> weak primes or known filtered primes. Both weak and filtered primes will
> undermine the TLS connection security properties. OpenSSH solves this issue
> dynamically in RFC 4419 [2] and may provide a solution that works reasonably
> well for Tor. More research in this area including Miller-Rabin primality tests
> will need to be analyzed and probably added to Tor.

RFC 4419 suggests the Miller-Rabin test because it is efficient and
well-known. Perhaps Tor could use the AKS primality test, which is
also efficient, and deterministic.