ffdhe3072
FFDHE | Security: ~128 bits | Code: 257
Group Details
ffdhe30722570x0101What is ffdhe3072?
FFDHE3072 is a 3072-bit finite field Diffie-Hellman group providing approximately 128-bit security, equivalent to AES-128 and secp256r1. FFDHE3072 is recommended for sensitive applications requiring long-term security. It is significantly slower than ECDHE curves (10-50x) but offers a conservative alternative for organizations concerned about potential weaknesses in elliptic curves. FFDHE3072 is defined in RFC 7919 with standardized prime numbers. It is supported by all modern browsers but rarely used, as ECDHE is strongly preferred for performance reasons. FFDHE may gain adoption if quantum computing threatens ECC.
Role in JA3 Fingerprinting
The ffdhe3072 group is used for ECDHE key exchange in TLS, providing perfect forward secrecy. Different browsers and HTTP clients advertise different supported groups, making this a key component of JA3 fingerprints.
Fingerprinting Impact: The order and selection of supported groups reveals browser type, version, and security preferences.