Tool to calculate/simulate key exchanges according to the Diffie-Hellman protocol based on mathematics and modular arithmetic.
Diffie-Hellman Key Exchange - dCode
Tag(s) : Modern Cryptography, Arithmetics
dCode is free and its tools are a valuable help in games, maths, geocaching, puzzles and problems to solve every day!
A suggestion ? a feedback ? a bug ? an idea ? Write to dCode!
Diffie-Hellman Key Exchange
Secret Shared Key Calculator
Answers to Questions (FAQ)
What is Diffie-Hellman Key Exchange? (Definition)
Diffie-Hellman key exchange is a mathematical/cryptographic protocol that allows two parties, even if they have never met before, to establish a shared secret over an insecure communication channel.
The principle relies on mathematical properties that allow a common secret key to be calculated without ever transmitting it directly.
An observer intercepting all public communications would not be able to deduce the shared secret.
This shared secret key can then be used as a symmetric encryption key to encrypt and decrypt messages or data exchanged between the two parties.
How does Diffie-Hellman Key Exchange work?
Two people, Alice and Bob, get in touch and publicly choose two common parameters: a large prime number $ P $ and a number $ G $ such that $ G < P $.
Alice then chooses a number $ a $ at random, called her private key, which she keeps secret. She then calculates $ A = G^a \mod P $. The value $ A $ is called Alice's public key and is sent publicly to Bob.
Similarly, Bob chooses a number $ b $ at random, called his private key, which he keeps secret. He calculates $ B = G^b \mod P $, his public key, and sends it publicly to Alice.
Alice, having received $ B $, calculates the value $ S = B^a \mod P $.
Bob, having received $ A $, calculates the value $ S = A^b \mod P $.
Thanks to the properties of modular arithmetic, both calculations yield exactly the same value $ S $. This value is the shared secret key. They can then communicate by encrypting their messages with this key.
An attacker who only observes the public values $ P $, $ G $, $ A $ and $ B $ cannot calculate $ S $ without knowing $ a $ or $ b $, because this would require solving the discrete logarithm problem, which is considered difficult for sufficiently large parameters.
| P = | 101 |
| G = | 12 |
| a = | 123 |
| b = | 345 |
| A = | G^a%P = 35 |
| B = | G^b%P = 60 |
| S = | B^a%P = A^b%P = 62 |
What are the Diffie-Hellman forces?
The main advantage of Diffie-Hellman is that it allows the establishment of a shared secret key over an insecure channel, without any prior secrecy between the communicating parties.
Another advantage is the theoretical robustness of the protocol when used with sufficiently large and well-chosen parameters. Diffie-Hellman also allows the use of ephemeral keys, which provides forward secrecy: the compromise of a private key at a given time does not allow the decryption of past communications.
What are the weaknesses of Diffie-Hellman? (Disadvantages)
The DHKE (Diffie-Hellman Key Exchange) protocol is vulnerable to several types of attacks:
— Man-in-the-middle attacks: an attacker intercepts the communication of the 2 parties and pretends to be the other party.
— Attack by reflection: an attacker sends a fake message asking to perform a new key exchange with himself, authentication of the parties is therefore preferable.
— Attack by precalculation/factorization: private keys are generally less than 1024 bits, precalculation of combinations with low values is possible but very costly in time and resources.
Why the number P must be prime?
When $ P $ is a prime number, the set of integers modulo $ P $ forms a mathematical group with good algebraic properties, notably the absence of zero divisors.
These properties guarantee that exponential operations modulo $ P $ behave predictably and securely, which is essential for Diffie-Hellman security.
It is theoretically possible to use a non-prime $ P $, but in this case, security relies on the difficulty of factoring $ P $. If an attacker knows this factorization, they can break the key exchange.
How to find out the private keys?
Private keys, by definition, are never shared publicly and remain known only to their owner.
Knowing a public key does not allow one to easily retrieve the corresponding private key; this is a well-known mathematical problem (known as the discrete logarithm problem).
Private keys are generated using cryptographically secure random number generators.
It is recommended to generate new private keys for each communication session to limit the impact of a potential compromise.
What is elliptic curve-based key exchange?
An elliptic version of Diffie-Hellman (Elliptic curve Diffie–Hellman ECDH) is based on the same principles as classical Diffie-Hellman, but uses elliptic curves instead of classical modular arithmetic.
This approach achieves an equivalent level of security with smaller key sizes, improving performance and reducing resource requirements.
When was Diffie-Hellman Key Exchange invented?
Whitfield Diffie and Martin Hellman presented their method in 1976.
Source code
dCode retains ownership of the "Diffie-Hellman Key Exchange" source code. Any algorithm for the "Diffie-Hellman Key Exchange" algorithm, applet or snippet or script (converter, solver, encryption / decryption, encoding / decoding, ciphering / deciphering, breaker, translator), or any "Diffie-Hellman Key Exchange" functions (calculate, convert, solve, decrypt / encrypt, decipher / cipher, decode / encode, translate) written in any informatic language (Python, Java, PHP, C#, Javascript, Matlab, etc.) or any database download or API access for "Diffie-Hellman Key Exchange" or any other element are not public (except explicit open source licence). Same with the download for offline use on PC, mobile, tablet, iPhone or Android app.
Reminder: dCode is an educational and teaching resource, accessible online for free and for everyone.
Cite dCode
The content of the page "Diffie-Hellman Key Exchange" and its results may be freely copied and reused, including for commercial purposes, provided that dCode.fr is cited as the source (Creative Commons CC-BY free distribution license).
Exporting the results is free and can be done simply by clicking on the export icons ⤓ (.csv or .txt format) or ⧉ (copy and paste).
To cite dCode.fr on another website, use the link:
In a scientific article or book, the recommended bibliographic citation is: Diffie-Hellman Key Exchange on dCode.fr [online website], retrieved on 2026-02-15,
- Secret Shared Key Calculator
- What is Diffie-Hellman Key Exchange? (Definition)
- How does Diffie-Hellman Key Exchange work?
- What are the Diffie-Hellman forces?
- What are the weaknesses of Diffie-Hellman? (Disadvantages)
- Why the number P must be prime?
- How to find out the private keys?
- What is elliptic curve-based key exchange?
- When was Diffie-Hellman Key Exchange invented?
