Hi, Some more context here:
https://blog.whiteout.io/2015/07/06/standardizing-secure-pgp-private-key-sync/ Using a 24 char backup code works fine for Whiteout users. We tested this in our UX labs and people had no problem writing it down or copy/pasting it into their password manager. So I can't confirm your hypothesis. We discussed using key stretching mechanism other than S2K but Werner Koch and others were strongly in favor of reusing existing ciphers and mechanism already available in current OpenPGP implementations. Tankred > Am 07.07.2015 um 18:13 schrieb Fabio Pietrosanti (naif) - lists > <[email protected]>: > >> On 7/2/15 3:49 PM, Tankred Hase wrote: >> We've already gotten feedback from other vendors using OpenPGP.js such >> as Mailvelope and 1&1, and we would also like to hear what others in >> the community have to say about it. Here is our current proposal: >> >> https://github.com/whiteout-io/mail-html5/wiki/Secure-OpenPGP-Key-Pair-Synchronization-via-IMAP >> >> Thanks for any feedback! > > I think that it's unrealistic to have people type a 24 character paraphrase: > "The passphrase SHOULD be a random high-entropy uppercase alphanumeric > string of 24 characters, generated from a cryptographically secure > pseudo-random number generator (CSPRNG). " > > For that reason the maximum key-stretching possible should be employed > in order to increase the entropy that can derive from a low-entropy > password. > > For that reason the hashing of the key should use algorithms that are > much more difficult to be parallelized such as scrypt (and in upcoming > future yescript, likely coming as a winner from the password-hashing > competition). > > > -- > Fabio Pietrosanti (naif) > HERMES - Center for Transparency and Digital Human Rights > http://logioshermes.org - https://globaleaks.org - https://tor2web.org - > https://ahmia.fi > _______________________________________________ > > http://openpgpjs.org > Subscribe/unsubscribe: http://list.openpgpjs.org _______________________________________________ http://openpgpjs.org Subscribe/unsubscribe: http://list.openpgpjs.org
