OpenSSL "genpkey dh_paramgen_prime_len:3072"

OpenSSL "genpkey dh_paramgen_prime_len:3072" - DH Long Keys

Q

How to generate a new DH key pair with a longer key size using OpenSSL "genpkey" command?

✍: FYIcenter.com

A

If you need a new DH key pair with a longer key size for testing purpose, you can use the OpenSSL "genpkey" command as shown below:

C:\Users\fyicenter>time
The current time is: 22:17:06.45
  
C:\Users\fyicenter>\local\openssl\openssl
OpenSSL> genpkey -genparam -algorithm dh -out dh_test.prm 
   -pkeyopt dh_paramgen_prime_len:3072
................................

OpenSSL> exit
C:\Users\fyicenter>time
The current time is: 22:33:53.68

C:\Users\fyicenter>\local\openssl\openssl
OpenSSL> genpkey -paramfile dh_test.prm -out dh_test.key

OpenSSL> pkey -in dh_test.key -text -noout
DH Private-Key: (3072 bit)
    private-key:
        63:de:f3:5c:8f:36:6a:1d:73:3f:a6:36:f9:a0:ae:
        33:db:99:04:61:9a:4b:2d:90:ed:af:99:12:46:1b:
        2d:09:be:3c:8c:0c:3d:da:05:36:64:d4:7a:93:d5:
...

What this test tells us:

The "-pkeyopt dh_paramgen_prime_len:n" option controls the size of DH key generation parameters and keys. The default value is "dh_paramgen_prime_len:1024"
OpenSSL allows you to generate longer DH keys.
Using OpenSSL "genpkey -genparam" command to generate 3072-bit DH parameters takes more than 7 minutes on a laptop computer.
Using OpenSSL "genpkey -genparam" command to generate 4096-bit DH parameters takes more than 20 minutes on a laptop computer.

⇒ OpenSSL "genpkey dh_paramgen_generator:3" - DH Param Generator

⇐ OpenSSL "genpkey dh_paramgen_prime_len:256" - DH Short Keys

⇑ OpenSSL "genpkey" Command for DH Keys

⇑⇑ OpenSSL Tutorials

2017-07-25, 2645👍, 0💬

OpenSSL "genpkey dh_paramgen_prime_len:3072" - DH Long Keys
How to generate a new DH key pair with a longer key size using OpenSSL "genpkey" command? If you need a new DH key pair with a longer key size for testing purpose, you can use the OpenSSL "genpkey" command as shown below: C:\Users\fyicenter>time The current time is: 22:17:06.45 C:\Users\fyice... 2017-07-25, 2646👍, 0💬

OpenSSL "genpkey dh_paramgen_prime_len:256" - DH Short Keys
How to generate a new DH key pair with a longer key size using OpenSSL "genpkey" command? If you need a new DH key pair with a longer key size for testing purpose, you can use the OpenSSL "genpkey" command as shown below: C:\Users\fyicenter>\loc al\openssl\opensslOpenSSL> genpkey -genp... 2017-09-01, 2383👍, 0💬

OpenSSL "genpkey dh_paramgen_generator:3" - DH Param Generator
How to use a different DH key generation parameter generator with OpenSSL "genpkey -genparam" command? When you use OpenSSL "genpkey -genparam -algorithm dh" command to generate DH key generation parameters, the default generator 2 will be used. You can change it by using the "-pkeyopt dh_paramgen_g... 2017-07-25, 2296👍, 0💬

OpenSSL "genpkey -paramfile" - Generate DH Key
How to generate a new DH private key using OpenSSL "genpkey" command? If you need a new DH private key in order to create a new certificate, you can use the OpenSSL "genpkey" command as shown below: C:\Users\fyicenter>\loc al\openssl\openssl.exeOpenSSL> genpkey -paramfile my_dh.prm -ou... 2017-09-08, 2257👍, 0💬

OpenSSL "pkey -pubout" - Extract DH Public Key
How to extract the public key from a DH key file using OpenSSL "pkey" command? If you want to extract the public key out from a DH key file (private key an public key), you can use the OpenSSL "pkey -pubout" command as shown below: C:\Users\fyicenter>\loc al\openssl\openssl.exeOpenSSL>... 2017-08-25, 2103👍, 0💬

OpenSSL "pkey -aes*" - Re-Encrypt DH Keys
How to re-encrypt a DH key file using OpenSSL "pkey" command? I want to change the encryption password, and maybe change the encryption algorithm. If you want to encrypt an existing DH key file again, you can use the "pkey -aes*" command as shown below: C:\Users\fyicenter>\loc al\openssl\opens... 2017-08-13, 1911👍, 0💬

OpenSSL "pkey" - Open Encrypted DH Keys
How to open an encrypted DH key file using OpenSSL "pkey" command? I was told the key file is DES encrypted and I know the password. If you are trying to open a password (encrypted) DH key file using the "pkey" command, you will be prompted for the password as shown below: C:\Users\fyicenter>... 2017-08-21, 1849👍, 0💬

OpenSSL "pkey -pubin" - View DH Public Key
How to view contents of a DH public key file using OpenSSL "pkey" command? If you want to view contents of a DH public key stored in a file, you can use the OpenSSL "pkey -pubin" command as shown below: C:\Users\fyicenter>\loc al\openssl\openssl.exeOpenSSL> pkey -pubin -in my_dh_pub.ke... 2017-09-01, 1561👍, 0💬

OpenSSL "genpkey -des" - DES Encrypt DH Keys
How to generate a new DH key pair and encrypt the output with a DES password using OpenSSL "genpkey" command? If you want to secure your new DH private key with a DES encryption, you can use the OpenSSL "genpkey -des" command as shown below: C:\Users\fyicenter>\loc al\openssl\opensslOpenSSL&a... 2017-08-21, 1554👍, 0💬

All rights in the contents of this web site are reserved by the individual author. fyicenter.com does not guarantee the truthfulness, accuracy, or reliability of any contents.