ASVS Requirement 11.6.2

• Level: 3
• Chapter: V11 Cryptography
• Section: V11.6 Public Key Cryptography
• Source: 0x20-V11-Cryptography.md

Description

Verify that approved cryptographic algorithms are used for key exchange (such as Diffie-Hellman) with a focus on ensuring that key exchange mechanisms use secure parameters. This will prevent attacks on the key establishment process which could lead to adversary-in-the-middle attacks or cryptographic breaks.