Microsoft Internet Security and Acceleration Server 2004 SDK

FpcVpnDiffieHellmanGroup

The FpcVpnDiffieHellmanGroup enumerated type contains values that specify the Diffie-Hellman groups that can be used in Phase 1 or Phase 2 of the Internet Protocol security (IPSec) negotiation process. The Diffie-Hellman group sets the length of the base prime numbers used during the key exchange process. The cryptographic strength of any key derived depends, in part, on this length.

typedef enum FpcVpnDiffieHellmanGroup
{
  fpcVpnDHGroup1
fpcVpnDHGroup1
Diffie-Hellman Group 1, which provides a keying strength of 768 bits.
 = 0,
  fpcVpnDHGroup2
fpcVpnDHGroup2
Diffie-Hellman Group 2, which provides a keying strength of 1,024 bits.
 = 1,
  fpcVpnDHGroup2048
fpcVpnDHGroup2048
Diffie-Hellman Group 2048, which provides a keying strength of 2,048 bits. This value is not supported on computers running a Windows 2000 Server operating system.
 = 2

} FpcVpnDiffieHellmanGroup;

Constants

fpcVpnDHGroup1
Diffie-Hellman Group 1, which provides a keying strength of 768 bits.
fpcVpnDHGroup2
Diffie-Hellman Group 2, which provides a keying strength of 1,024 bits.
fpcVpnDHGroup2048
Diffie-Hellman Group 2048, which provides a keying strength of 2,048 bits. This value is not supported on computers running a Windows 2000 Server operating system.

Requirements

Server: Requires Windows Server 2003 or Windows 2000.
Version: Requires Internet Security and Acceleration Server 2004.
Header: Declared in Comenum.h.

See Also

Enumerated Types