AnsweredAssumed Answered

PFS

Question asked by Josh M on Apr 11, 2018
Latest reply on Apr 13, 2018 by Rob Moss

Hi,

 

Needed some clarification on this.

With PFS (perfect forward secrecy) enabled, can the compromise of the private key result in an attacker decrypting the traffic for that one current session? If so, can someone please explain how?

 

I ask because the way I understand it, with PFS, private key is only used for signing and nothing else. So in that case, how can compromise of the private key result in decrypting the session?

 

I may be missing some basic information here, but I don't know what!

 

Thank you.

Outcomes