Message 385944 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	illia-v
Recipients	christian.heimes, docs@python, illia-v, rhettinger
Date	2021-01-29.21:40:15
SpamBayes Score	-1.0
Marked as misclassified	Yes
Message-id	<1611956415.85.0.149821780057.issue42982@roundup.psfhosted.org>
In-reply-to

Content
> FWIW, OnePass uses 100,000. https://support.1password.com/pbkdf2/ There is a history section on that page. And current 100,000 is ten times more than 1Password used in 2013 when the suggestion was added to the documentation. > Also, I don't think an additional time factor of 2.5x would make substantial difference in security, but it may make a noticeable difference in user authentication time. 2.5x difference can be substantial if x is hours, days, or years :)

> FWIW, OnePass uses 100,000.  https://support.1password.com/pbkdf2/

There is a history section on that page. And current 100,000 is ten times more than 1Password used in 2013 when the suggestion was added to the documentation.

> Also, I don't think an additional time factor of 2.5x would make substantial difference in security, but it may make a noticeable difference in user authentication time.

2.5x difference can be substantial if x is hours, days, or years :)

History
Date	User	Action	Args
2021-01-29 21:40:15	illia-v	set	recipients: + illia-v, rhettinger, christian.heimes, docs@python
2021-01-29 21:40:15	illia-v	set	messageid: <1611956415.85.0.149821780057.issue42982@roundup.psfhosted.org>
2021-01-29 21:40:15	illia-v	link	issue42982 messages
2021-01-29 21:40:15	illia-v	create