kdf – Page 2 – WindowsTechs.com

File encryption allowing changing password

Posted on December 14, 2019 by maaartinus

My app needs to work with encrypted user files on their devices. It should keep the data secret when someone gets hold of the device. For this, I’m thinking about the following schema (which may be wrong, and that’s why I’m a… Continue reading File encryption allowing changing password→

Why are KDFs slow? Is using a KDF more secure than using the original secret?

Posted on October 4, 2019 by mngxyuiso

According to the Wikipedia page for key derivation functions, a KDF’s purpose is to derive a secret key for cryptography:

In cryptography, a key derivation function (KDF) derives one or more secret keys from a secret valu… Continue reading Why are KDFs slow? Is using a KDF more secure than using the original secret?→

Most secure algorithms for KDF and Public Key Encryption

Posted on September 24, 2019 by vikarjramun

I’m developing an application which will need to derive a private/public key pair from a user provided password, and then use the public key to encrypt some text (up to 1000 characters in length) such that it can only be decr… Continue reading Most secure algorithms for KDF and Public Key Encryption→

How to encrypt user data in app using Google Sign-In

Posted on September 24, 2019 by vikarjramun

I am currently writing an application which needs to store user data encrypted in the database. One of the requirements is that some of the data stored in the database needs to be encrypted in a way that we (the database administrators, wi… Continue reading How to encrypt user data in app using Google Sign-In→

AES256 with 128 bit key

Posted on May 8, 2019 by Larry

A popular zero-knowledge file sharing site uses a 128-bit master key for encryption.

However, they claim to be using AES256. When questioned, they explained the master key is widened using PBKDF2 and random salt to 256-bits… Continue reading AES256 with 128 bit key→

Deriving 2 keys from user password – one for login – one for encryption?

Posted on March 14, 2019 by Dachstein

Context

We have a browser-based client-server application. The client registers with email and password. The password is enforced to some guidelines.

Problem

The User needs an encrypted vault on the server to store cryptog… Continue reading Deriving 2 keys from user password – one for login – one for encryption?→

How to choose between password derivation or encryption?

Posted on November 13, 2018 by CidTori

Suppose you use a password manager having all possible features of modern password managers: encryption with a key derived from your master password, auto-filling, cloud or local storage, browser extension, web and local appl… Continue reading How to choose between password derivation or encryption?→

How to choose between password derivation or encryption?

Posted on November 13, 2018 by CidTori

When would one use a password hash instead of a KDF?

Posted on July 28, 2018 by VortixDev

From what I’m reading, for storing passwords it is recommended to use a KDF (like Bcrypt). If it is more secure to use a KDF for handling passwords, when would you use a password hash instead?

Continue reading When would one use a password hash instead of a KDF?→

How can I find the default KDF for my version of GPG?

Posted on June 2, 2018 by Patriot

I am trying to find the default KDF for my version of gpg:

gpg (GnuPG) 2.2.6
libgcrypt 1.8.2

Does anyone know how?

Continue reading How can I find the default KDF for my version of GPG?→