prev next Slide 7 of 13

Diffie-Hellman: Agreeing on a Secret Key

Alice and Bob together (publicly) pick large primes n and g subject to (n - 1)/2 also prime, and other conditions on g
Alice picks a random secret x, sends Bob (n, g, g^x mod n)
Bob picks a random secret y, sends Alice g^y mod n
Alice and Bob both compute g^{x * y} mod n, the shared secret key
only works if it is hard to compute x given g^x mod n, g, and n, and hard to compute g^xy mod n given g^x mod n and g^y mod n
vulnerable to man-in-the-middle