07-31-2014, 01:17 PM
Thanks for this reply.
I build in your suggestion.
So the key gets now generated, using the system-dependent information AND an user-key, with PBKDF2 with 10000 rounds of salted SHA512.
I still include the system-dependent information, because i think even when you have access to the computer, it would be quite hard to get all the information which i use, and this is quite a lot.
Th IV gets filled with information out of a GUID, which gets new generated for each password.
What do you think now?
I build in your suggestion.
So the key gets now generated, using the system-dependent information AND an user-key, with PBKDF2 with 10000 rounds of salted SHA512.
I still include the system-dependent information, because i think even when you have access to the computer, it would be quite hard to get all the information which i use, and this is quite a lot.
Th IV gets filled with information out of a GUID, which gets new generated for each password.
What do you think now?