Important Notice: Our web hosting provider recently started charging us for additional visits, which was unexpected. In response, we're seeking donations. Depending on the situation, we may explore different monetization options for our Community and Expert Contributors. It's crucial to provide more returns for their expertise and offer more Expert Validated Answers or AI Validated Answers. Learn more about our hosting issue here.

The PGP implementation of DH is based on Galois Fields, aren they broken?

based Broken DH Fields galois Implementation PGP
0
Posted

The PGP implementation of DH is based on Galois Fields, aren they broken?

0 CommentsAdd a Comment

1 Answer

0

No. There are two general types of Galois Fields with cryptographic significance, GF(p) with p prime, and GF(2n). When first introduced, GF(2n) was the preferred implementation, basically because it is easier to implement in hardware [Sch96a], [Odl83]. However, this was shown to be relatively insecure. The field GF(p) where p is around 2750 and is prime is thought to offer roughly the same security as GF(2n) where n is around 2000. Clearly, the Galois Field GF(p) offers better security for the same parameter size. It is unfortunate that these two systems, though related, are both often discussed in the same breath – theory in one field isn’t necessarily applicable in the other field. Anyway, PGP implements Diffie-Hellman over GF(p) which, as we’ll see later, is still secure. If you are still interested in the relation between GF(p) and GF(2n) then I most highly recommend [Odl83].

0 CommentsAdd a Comment

Related Questions

What is your question?

*Sadly, we had to bring back ads too. Hopefully more targeted.

Experts123