Open calestyo opened 2 years ago
Someone should double check especially the following:
Argon2i uses data-independent memory access, which is preferred for password hashing and password-based key derivation.
and rather added a note in the beginning that the id variant is generally preferred.
@dkg ... since you wrote the main part of the manpage... maybe you want to have a look at this.
This all looks good to me. as for the argon2i vs. argon2id choices and documentation, RFC 9106 is a little funny in that its introduction says:
Argon2i uses data-independent memory access, which is preferred for password hashing and password-based key derivation.
but the recommendation section says:
The Argon2id variant with t=1 and 2 GiB memory is the FIRST RECOMMENDED option and is suggested as a default setting for all environments.
I think the proposed changes are fair, because arguably the sentence in the introduction is saying that 2i is "preferred…" in these contexts over 2d, due to 2d's vulnerability to side-channel attacks.
I don't have the ability to merge this change, of course, but i have no objections to it.
@veorq Just wondered whether this is still maintained? Last commit is already quite some time ago, and the number of MRs is rising ;-)
This includes:
Signed-off-by: Christoph Anton Mitterer mail@christoph.anton.mitterer.name