mwfarb
commented
10 years ago Thanks for the hardness auto-tune tip! And thanks for the heads up on the other PBE methods as well! I'll bring them to our team and we'll take a closer look. :-)
Open Safari77 opened 10 years ago
mwfarb
commented
10 years ago Thanks for the hardness auto-tune tip! And thanks for the heads up on the other PBE methods as well! I'll bring them to our team and we'll take a closer look. :-)
In place of PBKDF2 you might consider using e.g. Catena or Lyra2 in the next couple of years. Also some other of these meant for KDF could be used: https://password-hashing.net/index.html These are not yet widely used and may need some fine tuning during the next few years. But someone has to be the first user :) Iteration count of 1000 in PBKDF2 is not very good nowadays. Better make it autotune to take one second on the target device.