[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Canonical way to invoke the KDF?


I'm e-mailing this on behalf of PyCA. We're a group of Python hackers trying to improve the state of cryptographic libraries in Python, and trying to provide APIs that people can't get wrong. (The current state is that some of the libraries aren't great, and the APIs are way too low level.)

I was wondering if the canonical way to use scrypt as a KDF, particularly for purposes of password storage) is documented anywhere. The big implementation right now for Python suggests writing one using enc/dec functions (so the file encryption thing that is included in the tarball as a demo), but that seems kind of orthogonal to the actual key derivation part :)

cheers and thanks in advance