Diffie-Hellman groups in VPN
I’ve been working with VPNs quite a bit recently and keep running into issues where the other party uses the bit strength and group number for Diffie-Hellman groups interchangeably. Here is a quick reference list:
- Group 1: 768-bit
- Group 2: 1024-bit
- Group 5: 1536-bit
- Group 14: 2048-bit
- Group 15: 3072-bit
- Group 19: 256-bit EC
- Group 20: 384-bit EC
About the author
Brooks Garrett is a dedicated technologist who specializes in information security. Brooks has spent over 10 years implementing security programs for both the public and private sector including some of the biggest names in the Fortune 500. When he's not managing risk in the corporate environment you can find him at the local firestation where he is a volunteer firefighter.