Keyfiles in password encryption

BeloumiX

6/7/23, 7:26 AM

Some programs use keyfiles as a second factor besides the password. VeraCrypt and its predecessor TrueCrypt, for example, use a function built from CRC-32 that captures the first 1024 bits of a file. Both the processing of keyfiles and the length of generated files (KeePass 32 bytes, DiskCryptor and Kryptor 64 bytes) is very different. It looks like generated keyfiles are often twice as long as the targeted bit security.

To my knowledge there is no standard for this, but is there any systematic research on this?

Does it make more sense to process the keyfile before or after the key derivation function?

Which way of processing is best (HMAC, HKDF, simple hashing)?

0 + 0

encryption

passwords

disk-encryption

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: Keyfiles in password encryption

TH: ไฟล์คีย์ในการเข้ารหัสรหัสผ่าน

RO: Fișierele cheie în criptarea parolei

RU: Ключевые файлы в шифровании паролей

VI: Keyfiles trong mã hóa mật khẩu

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.