[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: How much data should I request from scrypt?

To: danielw@emaildoge.com
Subject: Re: How much data should I request from scrypt?
From: Bill Cox <waywardgeek@gmail.com>
Date: Sat, 27 Dec 2014 15:06:52 -0500
Cc: scrypt@tarsnap.com
In-reply-to: <7683568e3ace880664ade6163304628f.squirrel@lelantoss7bcnwbv.onion>
References: <7683568e3ace880664ade6163304628f.squirrel@lelantoss7bcnwbv.onion>

32 bytes (256 bits) is used internally IIRC. More provides no additional security. Only use more if you have a need for more key output for reasons specific to your application.

On Dec 27, 2014 11:49 AM, <danielw@emaildoge.com> wrote:

crypto_scrypt() allows me to specify how much data I want back from it.

This is what the last parameter, buflen, is for.

So the question is, how many bytes should I request to make it good for

hashing, just as good as SHA-256 say? Purpose being to make collisions

virtually impossible.

For example, are 200 bytes enough?

References:
- How much data should I request from scrypt?
  - From: danielw@emaildoge.com

Prev by Date: How much data should I request from scrypt?
Next by Date: Re: Can someone help me estimate the costs of doing this?
Previous by thread: How much data should I request from scrypt?
Index(es):
- Date
- Thread