Welcome to the VanDyke Software Forums

Join the discussion today!

Go Back   VanDyke Software Forums > General


Thread Tools Display Modes
Prev Previous Post   Next Post Next
Old 04-05-2016, 04:42 PM
RobIII's Avatar
RobIII RobIII is offline
Registered User
Join Date: Apr 2016
Location: Netherlands
Posts: 2
Does SecureCRT (8) support Curve25519?


I no longer trust the constants. I believe the NSA has manipulated them through their relationships with industry

 Bruce Schneier, The NSA Is Breaking Most Encryption on the Internet (2013)
Since then, Curve25519 has become the de-facto alternative to P-256, and is used in a wide variety of applications. In 2014 OpenSSH defaults to Curve25519-based ECDH.
Secure Secure Shell

OpenSSH supports 8 key exchange protocols:

curve25519-sha256: ECDH over Curve25519 with SHA2
ECDH curve choice: This eliminates 6-8 because NIST curves suck. They leak secrets through timing side channels and off-curve inputs. Also, NIST is considered harmful and cannot be trusted.
Recommended /etc/ssh/sshd_config snippet:

KexAlgorithms curve25519-sha256@libssh.org,diffie-hellman-group-exchange-sha256
As the title states: I can't find Curve25519 under the Key Exchange options (I do have alternatives I can use ofcourse). But does SecureCRT support Curve25519 or, if it doesn't, will it in the future and if so: when (guesstimate?)
Reply With Quote

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

All times are GMT -6. The time now is 01:39 PM.