04-17-2013, 02:53 AM
(04-16-2013, 11:12 PM)epixoip Wrote: no, that's only half the issue.Right.
I'm sorry if I'm being dense. I see "half" of the issue being a general PBKDF2 issue that isn't specific to the Agile Keychain. The other "half" of the issue is our weird use of separate PBKDF2 runs to get the IV (not needed for cracking) and the encryption key (needed for cracking.)
The general PBKDF2 issue gives a 2x speed up. The Agile Keychain specific issue gives another 2x speed up. If we limit the term "design flaw" to the Agile Keychain specific stuff then that flaw leaves a 2x speed up.
If I'm (still) mistaken about this, I'd really like to know (and understand). I want to write this all up for the AgileBits blog.