Page MenuHomePhabricator
Create Task
Maniphest T165308

Improve generation speed of Diffie-Hellman parameters for SSL
Closed, ResolvedPublic
Actions

Description

Research if generation speed of Diffie-Hellman parameters for SSL can be improved w/o compromising on security.

Idea: adding -dsaparam to openssl

If this option is used, DSA rather than DH parameters are read or created; they are converted to DH format. Otherwise, "strong" primes (such that (p-1)/2 is also prime) will be used for DH parameter generation. DH parameter generation with the -dsaparam option is much faster, and the recommended exponent length is shorter, which makes DH key exchange more efficient. Beware that with such DSA-style DH parameters, a fresh DH key should be created for each use to avoid small-subgroup attacks that may be possible otherwise.

Background: The currently used /usr/bin/openssl dhparam -out /etc/ssl/private/dhparams.pem 4096 takes its fine time, especially running on VMs, which is a hindrance in setting up new dev/test machines with playbooks containing this step.

Reads:

Related Objects

Event Timeline

Pablo-WMDE created this task.May 15 2017, 10:59 AM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptMay 15 2017, 10:59 AM
Pablo-WMDE added a comment.May 15 2017, 11:16 AM

@gabriel-wmde sagt: "sieht gut aus, das machen wir.".
@kai.nissen?

kai.nissen added a comment.May 15 2017, 11:20 AM

Sounds reasonable. I'm not a cryptology expert, though.

Pablo-WMDE added a comment.May 15 2017, 12:58 PM

So we have about 3 * 0.5... Who is the cryptology expert to green-light this?

JeroenDeDauw subscribed.May 15 2017, 7:59 PM

What is the motivation behind this task? Presumably _something_ is being slower than what we'd like?

Pablo-WMDE added a comment.May 16 2017, 7:24 AM

@JeroenDeDauw The motivation is indeed the time it takes to generate the Diffie-Hellman Ephemeral. Adding -dsaparam (i.e. DSA converted to DH format) speeds up this process enormously. Research suggests, that it's common practice to do so - but not answering the question if it's wise.

Pablo-WMDE updated the task description. (Show Details)May 16 2017, 7:27 AM
Pablo-WMDE updated the task description. (Show Details)May 16 2017, 7:36 AM
Pablo-WMDE updated the task description. (Show Details)May 16 2017, 7:38 AM
Pablo-WMDE updated the task description. (Show Details)May 17 2017, 8:46 AM
Pablo-WMDE updated the task description. (Show Details)May 17 2017, 8:51 AM
kai.nissen added a comment.EditedMay 17 2017, 9:46 AM

@Pablo-WMDE mentioned that this is being sent to clients for key exchange anyway. We should generate the parameter once without the option -dsaparam and check it into our repository.

https://security.stackexchange.com/a/94397

Pablo-WMDE added a comment.May 18 2017, 1:37 PM

https://github.com/wmde/fundraising-infrastructure/pull/146

Pablo-WMDE moved this task from Todo to Doing on the WMDE-Fundraising-Sprint-3 board.May 18 2017, 1:37 PM
Pablo-WMDE mentioned this in T166222: Use static Diffie-Hellman parameters for servers.May 24 2017, 10:47 AM
Pablo-WMDE moved this task from Doing to Done on the WMDE-Fundraising-Sprint-3 board.May 24 2017, 12:22 PM
Pablo-WMDE closed this task as Resolved.May 31 2017, 1:54 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL