On Apr 23, 2015, at 2:40 AM, Nils Durner <ndurner(_at_)googlemail(_dot_)com>
wrote:
Wrong. It's not the iteration count - it's the octet count of how many octets
will be hashed.
it is isomorphic to iteration count. It's just screwy and too clever by half.
Okay, I take that back. You know how there's a fine line between clever and
stupid? It's so clever that it wraps the cleverness counter and ends up on the
stupid side.
I would love to see PBKDF2 in there on the list of things acceptable. Please do
not assume my comment above means that I have *anything* nice to say about the
present iterator. It is, however, as secure as PBKDF2. It's just too clever by
half.
Jon
_______________________________________________
openpgp mailing list
openpgp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/openpgp