D(HE)at: A Practical Denial-of-Service Attack on the Finite Field Diffie–Hellman Key Exchange por Szilard Pfeiffer, Norbert Tihanyi

“…In this study, the consequences of these issues are explored, and a comparative security and performance analysis is conducted among the most commonly used general-purpose cryptographic libraries, including OpenSSL, BoringSSL, LibreSSL, GnuTLS, NSS, Mbed TLS, OpenJDK, Oracle JDK, and WolfSSL. Based on Shodan measurements, it has been found that 87% of servers worldwide support DH key exchange in the SSH protocol, and according to our scan, 55% of the top 1 million websites support DH in TLS. …”
Obter o texto integral