Playing Defence with PBKDF2
Authors: Jeffrey Goldberg

Date: July 2013
Publication: Passwords13 Las Vegas
Source: Currently no known Internet copy of paper.

Abstract or Summary:
Hashcat sped up cracking the 1Password Agile Keychain due, in part, to a design flaw in PBKDF2. I tell the story of the flaw, how it bit us, and our response from the defender's point of view. Note: Video of presentation:

Do you have additional information to contribute regarding this research paper? If so, please email with the details.

<-- Back to Authentication Research Paper Index

[Home] [About Us] [News] [Research]

Copyright © 2019