From 78597fc81b7947470eccadedbd5469f8350e52d1 Mon Sep 17 00:00:00 2001 From: Kevin Lewi Date: Thu, 21 Nov 2024 14:06:59 -0800 Subject: [PATCH] Updating scrypt salt + output length params (#472) --- draft-irtf-cfrg-opaque.md | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/draft-irtf-cfrg-opaque.md b/draft-irtf-cfrg-opaque.md index 4dc8aa1..9107534 100644 --- a/draft-irtf-cfrg-opaque.md +++ b/draft-irtf-cfrg-opaque.md @@ -1887,7 +1887,8 @@ Absent an application-specific profile, the following configurations are RECOMME Argon2id(S = zeroes(16), p = 4, T = Nh, m = 2^21, t = 1, v = 0x13, K = nil, X = nil, y = 2), ristretto255 - P256-SHA256, HKDF-SHA-256, HMAC-SHA-256, SHA-256, Argon2id(S = zeroes(16), p = 4, T = Nh, m = 2^21, t = 1, v = 0x13, K = nil, X = nil, y = 2), P-256 -- P256-SHA256, HKDF-SHA-256, HMAC-SHA-256, SHA-256, scrypt(N = 32768, r = 8, p = 1), P-256 +- P256-SHA256, HKDF-SHA-256, HMAC-SHA-256, SHA-256, + scrypt(S = zeroes(16), N = 32768, r = 8, p = 1, dkLen = 32), P-256 The above recommended configurations target 128-bit security.