Change mnemonic length - Githubissues

nextcloud / end_to_end_encryption_rfc

🔒 Specification for end-to-end encryption used by Nextcloud sync & mobile apps

Other

31 stars 15 forks source link

Change mnemonic length #59

Open lukasdenk opened 3 years ago

lukasdenk commented 3 years ago

Is there an option to change the length of the mnemonic? If not, I would like to create a feature request.

As far as I understood it, the 12 word mnemonic has (roughly) the same entropy as an 128 bit key and therefore complies with AES-128. However, to comply with AES-256, one had to increase the length of the mnemonic.

Therefore my request.

Thank you!

With best regards,

Lukas

BirdInFire commented 2 years ago

Is there an option to change the length of the mnemonic? If not, I would like to create a feature request.

As far as I understood it, the 12 word mnemonic has (roughly) the same entropy as an 128 bit key and therefore complies with AES-128. However, to comply with AES-256, one had to increase the length of the mnemonic.

Therefore my request.

Thank you!

With best regards,

Lukas

Since only bot come here, i think it will never append.

yahesh commented 8 months ago

The mnemonic isn't used directly but thrown into PBKDF2-HMAC-SHA1. So there would be more to be changed then just this. Furthermore, there are places where AES-128 is used instead of AES-256.