View Single Post
  #1  
Old 04-05-2016, 05:42 PM
RobIII's Avatar
RobIII RobIII is offline
Registered User
 
Join Date: Apr 2016
Location: Netherlands
Posts: 2
Does SecureCRT (8) support Curve25519?

Curve25519

Quote:
Quote:
I no longer trust the constants. I believe the NSA has manipulated them through their relationships with industry

 Bruce Schneier, The NSA Is Breaking Most Encryption on the Internet (2013)
Since then, Curve25519 has become the de-facto alternative to P-256, and is used in a wide variety of applications. In 2014 OpenSSH defaults to Curve25519-based ECDH.
Secure Secure Shell

Quote:
OpenSSH supports 8 key exchange protocols:

curve25519-sha256: ECDH over Curve25519 with SHA2
...
ECDH curve choice: This eliminates 6-8 because NIST curves suck. They leak secrets through timing side channels and off-curve inputs. Also, NIST is considered harmful and cannot be trusted.
...
Recommended /etc/ssh/sshd_config snippet:

Code:
KexAlgorithms curve25519-sha256@libssh.org,diffie-hellman-group-exchange-sha256
As the title states: I can't find Curve25519 under the Key Exchange options (I do have alternatives I can use ofcourse). But does SecureCRT support Curve25519 or, if it doesn't, will it in the future and if so: when (guesstimate?)
Reply With Quote