Categories:
Android (13)
Apple Mac (27)
DH Keys (39)
DSA Keys (83)
EC Keys (2415)
Firefox (30)
General (10)
Google Chrome (25)
Intermediate CA (152)
Java VM (29)
JDK Keytool (28)
Microsoft CertUtil (29)
Microsoft Edge (9)
Mozilla CertUtil (21)
OpenSSL (236)
Other (7)
Portecle (38)
Publishers (6559)
Revoked Certificates (16)
Root CA (85)
RSA Keys (5293)
Tools (46)
Tutorial (1)
What Is (22)
Windows (127)
Collections:
Other Resources:
OpenSSL "genpkey dh_paramgen_prime_len:3072" - DH Long Keys
How to generate a new DH key pair with a longer key size using OpenSSL "genpkey" command?
✍: FYIcenter.com
If you need a new DH key pair with a longer key size for testing purpose, you can use the OpenSSL "genpkey" command as shown below:
C:\Users\fyicenter>time The current time is: 22:17:06.45 C:\Users\fyicenter>\local\openssl\openssl OpenSSL> genpkey -genparam -algorithm dh -out dh_test.prm -pkeyopt dh_paramgen_prime_len:3072 ................................ OpenSSL> exit C:\Users\fyicenter>time The current time is: 22:33:53.68 C:\Users\fyicenter>\local\openssl\openssl OpenSSL> genpkey -paramfile dh_test.prm -out dh_test.key OpenSSL> pkey -in dh_test.key -text -noout DH Private-Key: (3072 bit) private-key: 63:de:f3:5c:8f:36:6a:1d:73:3f:a6:36:f9:a0:ae: 33:db:99:04:61:9a:4b:2d:90:ed:af:99:12:46:1b: 2d:09:be:3c:8c:0c:3d:da:05:36:64:d4:7a:93:d5: ...
What this test tells us:
⇒ OpenSSL "genpkey dh_paramgen_generator:3" - DH Param Generator
⇐ OpenSSL "genpkey dh_paramgen_prime_len:256" - DH Short Keys
2017-07-25, 2645👍, 0💬
Popular Posts:
Certificate Summary: Subject: kube-apiserver-lb-signer Issuer: kube-apiserver-lb-signer Expiration: ...
Certificate summary - Owner: COMODO RSA Certification Authority, COMODO CA Limited, L=Salford, ST=Gr...
Certificate Summary: Subject: www.amazon.co.jp Issuer: VeriSign Class 3 Secure Server CA - G3 Expira...
Certificate summary - Owner: Alpha CA, Alpha, Alpha CA Issuer: GlobalSign Root CA, Root CA, GlobalSi...
What are the reasons why a X.509 certificate got revoked? When a certificate CA publishes a CRL (Cer...