We should use Diffie-Hellman based key exchange in P2P connections

HathorNetwork / hathor-core

Hathor core is the official and reference client for operating a full node in Hathor Network.

https://hathor.network

Apache License 2.0

83 stars 26 forks source link

We should use Diffie-Hellman based key exchange in P2P connections #21

Open obiyankenobi opened 5 years ago

obiyankenobi commented 5 years ago

For servers, it is desirable to offer Diffie-Hellman based key exchange that provides perfect forward secrecy. The ciphers are activated by default, however it is necessary to pass an instance of DiffieHellmanParameters to CertificateOptions via the dhParameters option to be able to use them.

https://twistedmatrix.com/documents/current/core/howto/ssl.html#tls-protocol-options

jansegre commented 2 months ago

This might still be useful but will definitely need an RFC.