UNLIMITED FREE
ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already a GlobalSpec user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your GlobalSpec Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

IETF RFC 8732

Generic Security Service Application Program Interface (GSS-API) Key Exchange with SHA-2

active, Most Current
Buy Now
Organization: IETF
Publication Date: 1 February 2020
Status: active
Page Count: 12
scope:

Abstract

This document specifies additions and amendments to RFC 4462. It defines a new key exchange method that uses SHA-2 for integrity and deprecates weak Diffie-Hellman (DH) groups. The purpose of this specification is to modernize the cryptographic primitives used by Generic Security Service (GSS) key exchanges.

Document History

IETF RFC 8732
February 1, 2020
Generic Security Service Application Program Interface (GSS-API) Key Exchange with SHA-2
Abstract This document specifies additions and amendments to RFC 4462. It defines a new key exchange method that uses SHA-2 for integrity and deprecates weak Diffie-Hellman (DH) groups. The purpose...

References

This document references:
RFC 2743 - Generic Security Service Application Program Interface Version 2, Update 1
Published by IETF on January 1, 2000
A description is not available for this item.
This document references:
IETF RFC 3526 - More Modular Exponential (MODP) Diffie-Hellman groups for Internet Key Exchange (IKE)
Published by IETF on May 1, 2003
This document defines new Modular Exponential (MODP) Groups for the Internet Key Exchange (IKE) protocol. It documents the well known and used 1536 bit group 5, and also defines new 2048, 3072, 4096,...
This document references:
IETF RFC 4648 - The Base16, Base32, and Base64 Data Encodings
Published by IETF on October 1, 2006
This document describes the commonly used base 64, base 32, and base 16 encoding schemes. It also discusses the use of line-feeds in encoded data, use of padding in encoded data, use of non-alphabet...
This document references:
IETF RFC 5656 - Elliptic Curve Algorithm Integration in the Secure Shell Transport Layer
Published by IETF on December 1, 2009
This document describes algorithms based on Elliptic Curve Cryptography (ECC) for use within the Secure Shell (SSH) transport protocol. In particular, it specifies Elliptic Curve Diffie-Hellman...
This document references:
IETF RFC 8268 - More Modular Exponentiation (MODP) Diffie-Hellman (DH) Key Exchange (KEX) Groups for Secure Shell (SSH)
Published by IETF on December 1, 2017
This document defines added Modular Exponentiation (MODP) groups for the Secure Shell (SSH) protocol using SHA-2 hashes. This document updates RFC 4250. This document updates RFC 4253 by correcting...
This document references:
IETF RFC 8731 - Secure Shell (SSH) Key Exchange Method Using Curve25519 and Curve448
Published by IETF on February 1, 2020
Abstract This document describes the specification for using Curve25519 and Curve448 key exchange methods in the Secure Shell (SSH) protocol.
This document references:
ISO/IEC 8825-1 - Information technology - ASN.1 encoding rules: Specification of Basic Encoding Rules (BER), Canonical Encoding Rules (CER) and Distinguished Encoding Rules (DER)
Published by ISO on November 15, 2015
This Recommendation | International Standard specifies a set of basic encoding rules that may be used to derive the specification of a transfer syntax for values of types defined using the notation...
This document is referenced by:
RFC 9142 - Key Exchange (KEX) Method Updates and Recommendations for Secure Shell (SSH)
Published by IETF on January 1, 2022
Abstract This document updates the recommended set of key exchange methods for use in the Secure Shell (SSH) protocol to meet evolving needs for stronger security. It updates RFCs 4250, 4253, 4432,...
View Less
View All
Advertisement