|
Crypto
AES 256Bit using a key less than 256Bit Apr 04 2008 06:01PM Stefan Schulze Frielinghaus (stefan seekline net) (3 replies) Re: AES 256Bit using a key less than 256Bit Apr 07 2008 03:01PM Michael Simpson (mikie simpson gmail com) Re: AES 256Bit using a key less than 256Bit Apr 07 2008 12:31PM Alexander Klimov (alserkli inbox ru) |
|
 Privacy Statement |
> My actual question is what does the standard say to passwords which are
> not exactly 256 Bit long? Often user passwords are 8 characters long
> (which means an effective key size of 64 Bit). Or someone could have a
> key file which is 300 Bit long. But AES with 256 Bit support would only
> use 256 Bit of the 300 Bit. Or it has to calculate a 256 Bit key of the
> 64 Bit material specified from the user.
You never use the password as the key. You use the password as one of the
inputs to a key derivation function. PKCS#5 appears to be the common KDF
approach.
Brad
[ reply ]