ffdhe2048
FFDHE | Security: ~112 bits | Code: 256
Group Details
ffdhe20482560x0100What is ffdhe2048?
FFDHE2048 (Finite Field Diffie-Hellman Ephemeral, 2048-bit) is a standardized DH group providing approximately 112-bit security. FFDHE groups use traditional Diffie-Hellman over finite fields (as opposed to elliptic curves). FFDHE2048 is defined in RFC 7919 and uses well-vetted prime numbers to avoid small-subgroup attacks. While FFDHE is slower than ECDHE, it is considered more conservative and may have better post-quantum resistance. FFDHE2048 is the minimum recommended size, with FFDHE3072 and FFDHE4096 providing higher security. Browser support is universal but ECDHE is strongly preferred.
Role in JA3 Fingerprinting
The ffdhe2048 group is used for ECDHE key exchange in TLS, providing perfect forward secrecy. Different browsers and HTTP clients advertise different supported groups, making this a key component of JA3 fingerprints.
Fingerprinting Impact: The order and selection of supported groups reveals browser type, version, and security preferences.