Ask Your Question

Revision history [back]

click to hide/show revision 1
initial version

asked 2018-03-30 15:10:59 +0000

tlemons gravatar image

How can I decode TLS that uses DH?

I regularly capture and analyze exchanges involving data protection applications that use TLS with ECDHE used as the key exchange algorithm. I've read resources like https://sharkfesteurope.wireshark.org/assets/presentations17eu/15.pdf which talk about ways to handle the decoding of DH-based TLS exchanges for a browser like Chrome or Firefox. But how can I decrypt a TLS-protected data stream from something other than a browser?

Thanks! tl

How can I decode TLS that uses DH?

I regularly capture and analyze exchanges involving data protection applications that use TLS with ECDHE used as the key exchange algorithm. My current task is to decode an exchange that used the cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256.

I've read resources like https://sharkfesteurope.wireshark.org/assets/presentations17eu/15.pdf which talk about ways to handle the decoding of DH-based TLS exchanges for a browser like Chrome or Firefox. But how can I decrypt a TLS-protected data stream from something other than a browser?browser? I do have the private key used.

Thanks! tl

How can I decode TLS that uses DH?

I regularly capture and analyze exchanges involving data protection applications that use TLS with ECDHE used as the key exchange algorithm. My current task is to decode an exchange that used the cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256.

I've read resources like https://sharkfesteurope.wireshark.org/assets/presentations17eu/15.pdf which talk about ways to handle the decoding of DH-based TLS exchanges for a browser like Chrome or Firefox. But how can I decrypt a TLS-protected data stream from something other than a browser? I do have the private key used.

Thanks! tl

click to hide/show revision 4
None

updated 2018-03-30 16:03:06 +0000

grahamb gravatar image

How can I decode TLS that uses DH?

I regularly capture and analyze exchanges involving data protection applications that use TLS with ECDHE used as the key exchange algorithm. My current task is to decode an exchange that used the cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256.TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256.

I've read resources like https://sharkfesteurope.wireshark.org/assets/presentations17eu/15.pdf which talk about ways to handle the decoding of DH-based TLS exchanges for a browser like Chrome or Firefox. But how can I decrypt a TLS-protected data stream from something other than a browser? I do have the private key used.

Thanks! tl

Copyright Wireshark Foundation, 2017-2023 Content on this site is licensed under a Creative Commons Attribution Share Alike 3.0 license.
about | faq | help | privacy policy | terms of service
Powered by Askbot version 0.10.2