ffdhe4096
FFDHE | Security: ~152 bits | Code: 258
Group Details
ffdhe40962580x0102What is ffdhe4096?
FFDHE4096 is a 4096-bit finite field DH group providing approximately 152-bit security, offering a substantial security margin. It is suitable for government and military applications with very high security requirements. FFDHE4096 is defined in RFC 7919 and uses vetted primes resistant to known attacks. Performance is extremely slow (50-100x slower than X25519), making it impractical for high-traffic websites. FFDHE4096 is supported by modern browsers but almost never used in practice. It serves as a conservative fallback for organizations with stringent security policies or concerns about ECC.
Role in JA3 Fingerprinting
The ffdhe4096 group is used for ECDHE key exchange in TLS, providing perfect forward secrecy. Different browsers and HTTP clients advertise different supported groups, making this a key component of JA3 fingerprints.
Fingerprinting Impact: The order and selection of supported groups reveals browser type, version, and security preferences.