Exactly right :)
On 16-Jul-24 06:22, Glyph wrote:
On Jul 15, 2024, at 11:23 AM, Ben Portner via
Cryptography-dev<cryptography-dev@python.org> wrote:
"What would you do with metadata about KDF parameters, if you had them?"
Correct me if I'm wrong. I believe those parameters (initial vector, number of
rounds...) are required to restore the AES key from the user-provided password.
Without those parameters one cannot restore the AES key and thus not decrypt
the cipher text.
Ah, so you want something where you can exchange a "password protected file"
and then somehow communicate the human-entered password out of band as text, rather than
as an AES key, then have the file be otherwise self-contained?
-g
_______________________________________________
Cryptography-dev mailing list
Cryptography-dev@python.org
https://mail.python.org/mailman/listinfo/cryptography-dev
