Ultimate Javascript Object Signing and Encryption (JOSE), JSON Web Token (JWT) and Json Web Keys (JWK) Implementation for .NET and .NET Core
936
stars
184
forks
source link
Introduce min/max p2c count configuration for PBKDF2 algorithms #199
Closed
dvsekhvalnov closed 1 year ago
Introduce ability to configure min/max iteration counts for PBKDF2 algos
Per https://cheatsheetseries.owasp.org/cheatsheets/Password_Storage_Cheat_Sheet.html#pbkdf2 there are quite high minimum recommended number of iterations.
The change should introduce reasonable safe defaults for the library, but allow runtime customization as well.