Protection against offline dictionary attack on static files
Ken Ballou
ballou at crab.mv.com
Wed Nov 12 13:29:35 EST 2003
On Thu, Oct 23, 2003 at 08:20:35AM +0100, Arcane Jill wrote:
> Hi,
>
> It's possible I may be reinventing the wheel here,
Not really. You've just come down with a bad case of the PBEs. ;-)
Take a look at PKCS #5 (here's a link to version 1.5:
ftp://ftp.rsasecurity.com/pub/pkcs/ascii/pkcs-5.asc). Essentially, it's
the scheme you just described, with provisions for generating more bits
of keying material if the encryption algorithm requires more bits than the
hash algorithm provides. (For instance, imagine AES with a 256 bit key,
but suppose the hash algorithm is SHA-1, which only produces 160 bits
of output.)
- Ken
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com
More information about the cryptography
mailing list