Jump to content
TorGuard
Kerry

ECDH/ ECDHE vs DHE for key exchange

Rate this topic

Recommended Posts

Question: Looking at the VPN specifications tab, I notice that no available configuration of the client software uses EDCHE/ EDCH, but instead they all use 4096 bit DHE (Diffie-Hellman key exchange). 

Is there a specific reason for this? If I understand correctly, the two I suggested are computationally less intense, which may help optimize startup times and operation efficiency. 
BUT maybe I am wrong! Maybe EDCHE doesn't integrate well. Maybe this stack is the best. Lets talk about it! 

Share this post


Link to post
Share on other sites
On 05/07/2018 at 10:22 PM, Kerry said:

Question: Looking at the VPN specifications tab, I notice that no available configuration of the client software uses EDCHE/ EDCH, but instead they all use 4096 bit DHE (Diffie-Hellman key exchange). 

Is there a specific reason for this? If I understand correctly, the two I suggested are computationally less intense, which may help optimize startup times and operation efficiency. 
BUT maybe I am wrong! Maybe EDCHE doesn't integrate well. Maybe this stack is the best. Lets talk about it! 

 

We do plan on offering EDCHE, in fact, we are well underway in offering this option. it wasn't possible up until OpenVPN 2.4.

Regards

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

×