Opened 3 years ago

Closed 10 months ago

#8831 enhancement closed fixed (fixed)

Conch should use cryptography's DH primitives

Reported by: mark williams Owned by: Tom Most <twm@…>
Priority: normal Milestone:
Component: conch Keywords: review
Cc: Branch:


conch uses Python's pow to calculate the shared security during Diffie-Hellman key exchange. Instead it should use cryptography's bindings for DH, which should be both faster and less susceptible to timing attacks.

Change History (4)

comment:1 Changed 13 months ago by Wim Lewis

Component: coreconch
Owner: set to Wim Lewis
Status: newassigned

comment:2 Changed 11 months ago by Wim Lewis

Keywords: review added
Owner: Wim Lewis deleted
Status: assignednew

comment:4 Changed 10 months ago by Tom Most <twm@…>

Owner: set to Tom Most <twm@…>
Resolution: fixed
Status: newclosed

In 3c88cc4:

Merge pull request #1075 from twisted/8831-conch-diffie-hellman

Author: wiml
Reviewer: lvh
Fixes: ticket:8831

Make Conch use cryptography for DH

Note: See TracTickets for help on using tickets.