[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

AW: [iaik-jce]

> -  issue certificates containing dh public key, signed with dsaWithSHA
> -  exchange certificates, and then compute SecreKey using dh
> KeyAgreement with the public key in the certificate from partner
> -  peiodically update my certificate with new dh key so that the
> secret key will be changed.
Should work, but you do not need to update your certificate for making sure
that dh generates a new secret, as dh should use a random component there in
any case to generate the secret key.

Dr. Peter Lipp
Inffeldgasse 16a, A-8010 Graz, Austria
Tel: +43 316 873 5513
Fax: +43 316 873 5520
Web: www.iaik.at