gerritjvv Author of this blog

AES Encryption Keys (password hashing)

AES Encryption Keys (password hashing)


The prior requirement to any encryption is having a good key.

All known encryption algorithms rely on that the key has a certain length and is non deterministic (indistinguishable from random data). User supplied passwords do not qualify as good encryption keys, they are either too short or not random enough.

Keys must have a minimum length, and the length depends on the encryption algorithm. AES+CBC encryption require a minimum length of 16 bytes (128bits), AES+GCM can work with 12bytes but 16bytes is recommended.

This article was published on my medium account, please click on the link to read further.

comments powered by Disqus