Anyhow, the point of this post is not to delve into cryptographic keys. You can get information on cryptography and keys on the world wide web.
I want to talk about this particular error message.
Diffie-Hellman technique can be implemented in 3 different ways:
- Anonymous key exchange (Keys are exchanged without authentication and is a weak method)
- Fixed key exchange (here known keys are exchanged and is reasonable secure)
- Ephemeral Key exchange (here the keys are temporary and created during the transaction and is a strong method).
Ephemeral is a word often used in literature but avoided in technical and user documents. Although, it is used in the textual description as "ephemeral Diffie-Hellman public key", this error message should have been rephrased. Something like "Connection on this website is not secure."
Then the next sentence has the phrase "disastrous misconfiguration". This is really scary! Could have read as "This is a problem with the server on the website you tried to log into.
Next the marketing slant "Chrome won't use..."
Which user likes to see such unfriendly error messages? The same website however worked when I used Internet Explorer!