This repository has been archived by the owner on Apr 25, 2022. It is now read-only.
use ephermerial diffie hellman #32
Comments
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
In the key exchange, static DH is used, which reduce the security of the messages by always using the same secret.
Using an ephermeral key, signed by the long-term key would work.
NB: avoid replay attack of the exchange but potentially using a namespace
The text was updated successfully, but these errors were encountered: