Hello!
I am very interested in the reason the auditors have to generally declare DH as insecure!?
To my knowledge the discrete logarithm problem isn´t solved- is it?
The only reason to declare it as insecure could be that the DH itself doesn´t authenticate partners, but if other components guarantee authentication there is no reason for denying the usage of DH. (See IPSec, IKE --> DH in use).
So do you really want to investigate which cryptgraphic algorithms are used for every product you use?
Better ask those auditors or concrete explanation about their concerns about DH.
-------------------------------
btw - if you think DH could be used to encrypt your disk - than the answer is NO. - DH is a key exchange algorithm to secure an unsecure channel
Regards Chris