Security experts say there’s no need to rush to fix a 20-year-old flaw in Transport Layer Security. The Logjam vulnerability concerns Diffie-Hellman ciphersuites, which are widely used and well-regarded by cryptographers, except when used in weak “export strength” The only fix for Logjam is to ensure clients – including browsers – do not accept any weak Diffie Hellman parameters. A well-funded nation-state entity – such as the U.S. National Security Agency – could crack some 1024-bit keys, experts say.”]
Source: https://www.cuinfosecurity.com/logjam-vulnerability-5-key-issues-a-8249