生产运营/行业运营>> diffie_hellman_key_exchange>> 返回
项目作者: gsurma

项目描述 :
Swift implementation of classic cryptographic key exchange method.
高级语言: Swift
项目地址: git://github.com/gsurma/diffie_hellman_key_exchange.git
创建时间: 2018-04-07T09:58:07Z
项目社区:https://github.com/gsurma/diffie_hellman_key_exchange
开源协议:MIT License
下载




Diffie-Hellman Key Exchange

Swift implementation of classic cryptographic key exchange method.

About

Diffie-Hellman Key Exchange allow parties to jointly establish a secure private key without sharing it in any way (Forward secrecy) and then use it for a symmetric key cipher.

How does it work?

  1. Both parties agree on a common component, which consists of two natural numbers p (modulus) and g (base). They can be completely random to make this work, but in order to make the process significantly harder to break, p should be a prime and g should be primitive root modulo of p. Check DHParameters.swift for more info.
  2. Then both parties generate random private keys and then compute public keys which they share with each other. Public keys are computed as follows publicKey = g^privateKey mod p

  3. Afterward, both parties can compute common secret key using own private key and peer’s public key. They can do it using the following formula secretKey = peerPublicKey^ownPrivateKey mod p

    Underlying math:
    (g^a mod p)^b mod p = g^ab mod p
    (g^b mod p)^a mod p = g^ba mod p

  4. Now both parties can communicate using symmetric cryptography using a jointly established private key.




What’s so special about it?

This protocol is considered secure (check disclaimer), because it’s relatively hard for eavesdroppers to compute a common secret key knowing only public keys if p is big enough.

Disclaimer

Don’t use it in a production environment. Generated keys are very small (Int64) thus making them easily breakable.
Use already generated RFC primes, but even them may not be strong enough.

Author

Greg (Grzegorz) Surma

PORTFOLIO

GITHUB

@gsurma">BLOG