Phase 1 Suite - 2.16 Key Exchange Algorithm

Keys: Software\Policies\...\Phase1CryptoSet\<wszSetId>\<SuiteIndex>.

Value: "2_16KeyExchange"

Type: REG_SZ.

Size: Equal to size of the Data field.

Data: This value is a Unicode string encoded using the following grammar rule:

 KEY_EXCHANGE_VAL = "DH1" / "DH2" / "DH2048" / "ECDH-256" / "ECDH-384" / "DH24"

DH1: This token represents the FW_CRYPTO_KEY_EXCHANGE_DH1 enumeration value as defined in [MS-FASP] section 2.2.65. The remaining token values in this list can be found in the same Protocol specification section except where noted.

DH2: This token represents the FW_CRYPTO_KEY_EXCHANGE_DH2 enumeration value.

DH2048: This token represents the FW_CRYPTO_KEY_EXCHANGE_DH2048 enumeration value.

ECDH-256: This token represents the FW_CRYPTO_KEY_EXCHANGE_ECDH256 enumeration value.

ECDH-384: This token represents the FW_CRYPTO_KEY_EXCHANGE_ECDH384 enumeration value.

DH24: This token represents the FW_CRYPTO_KEY_EXCHANGE_DH24 enumeration value.

This value represents the KeyExchange field of the FW_PHASE1_CRYPTO_SUITE structure as defined in [MS-FASP] section 2.2.69.