Rosen Penev wrote:
One downside of this is that in the case of iterated hashes(PBKDF2) this
only speeds up the first iteration. I do not believe that TLS uses
iterated HMAC-SHA1.
And that is a good thing! Anything that speeds up or otherwise reduces
the computation effort of PBKDF2 only
Will this ever get implemented?: https://hashcat.net/p12/
My understanding is that this precomputes several portions of the key
expansion stage to speed up performance. As modern websites using TLS
use HMAC-SHA1, this seems like a nice addition.
One downside of this is that in the case of
