Security

5005 readers

1 users here now

Confidentiality Integrity Availability

founded 4 years ago

MODERATORS

[email protected]

A doubt in encryption (lemmy.ml)

submitted 6 months ago by [email protected] to c/[email protected]

28 comments fedilink hide all child comments

There’s a server, a client, and a hacker in a network. For encryption, the client and the server need to share their private keys. Wouldn’t the hacker be able to grab those during their transmission and decrypt further messages as they please?

you are viewing a single comment's thread
view the rest of the comments

[–] [email protected] 17 points 6 months ago (1 children)

Diffie Hellman key exchange (video)

[–] [email protected] 1 points 6 months ago (1 children)

I don't think DH is accurately relating to this. DH key exchange is used to generate a shared secret to use symmetric cryptography by two entities from (generally temporary) private keys, which are not specifically associated with a public key (this is not a public/private key pair)

To me, two examples of public/private key usage are RSA (asymmetric cryptography) and for example SSH authentication with a key pair. DH key exchange can be used in SSH to encrypt communication, before authentication even begins

[–] [email protected] 2 points 6 months ago

Published in 1976 by Diffie and Hellman, this is the earliest publicly known work that proposed the idea of a private key and a corresponding public key.

https://en.wikipedia.org/wiki/Diffie%E2%80%93Hellman_key_exchange