Hi! > On Wed, Mar 12, 2008 at 3:23 AM, Henrik Theiling <theiling@xxxxxxxxxx> wrote: > ... >> As SHA1 produces 160 bit hashes, is it so that hashing the pass phrase >> reduces the overall strength to 160 bits despite the master key being, >> say, AES with 256 bits? In that case, SHA-256 would indeed be quite >> cool. > ... Roscoe writes: > ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-5v2/pkcs5v2-0.pdf Thanks! It was exactly what I was searching for. > Appendix B.1 Reading, I take that as a 'yes'. So for random keys, not human pass phrases, it would indeed be interesting to have something with more output bits. For the paranoid. :-) **Henrik --------------------------------------------------------------------- dm-crypt mailing list - http://www.saout.de/misc/dm-crypt/ To unsubscribe, e-mail: dm-crypt-unsubscribe@xxxxxxxx For additional commands, e-mail: dm-crypt-help@xxxxxxxx
