Updated on 2024-07-23 GMT+08:00

How Many Bits Do the DH Groups Used by VPN Have?

Diffie-Hellman (DH) groups determine the strength of the key used in the key exchange process. Higher DH group numbers are usually more secure, but more time is required to calculate the key.

Table 1 lists the number of bits corresponding to the DH groups used by VPN.

Table 1 Number of bits corresponding to each DH group

DH Group

Modulus

1

768 bits

2

1024 bits

5

1536 bits

14

2048 bits

15

3072 bits

16

4096 bits

19

256 bits (ECP)

20

384 bits (ECP)

21

521 bits (ECP)

The following DH algorithms have security risks and are not recommended: DH group 1, DH group 2, and DH group 5.