Insufficient Default Key Length in PBKDF2 Violates NIST Guidelines

brix / crypto-js

JavaScript library of crypto standards.

Other

15.87k stars 2.39k forks source link

Insufficient Default Key Length in PBKDF2 Violates NIST Guidelines #475

Closed tianjk99 closed 1 year ago

tianjk99 commented 1 year ago

Despite the improvements in the default hash algorithm and number of iterations in PBKDF2 version 4.2.0, the default derived key length of 32 bits violates the minimum requirement of 112 bits specified by NIST SP800-132. cfg: Base.extend({ keySize: 128/32, hasher: SHA256, iterations: 250000 }),

tianjk99 commented 1 year ago

Sorry, this is my problem, this implementation is correct