On Tue, Sep 06, 2016 at 01:56:32PM +0100, Filippo Valsorda wrote:
> Hello,
>
> I recently had the occasion to dive into the softraid crypto code [1]
> and was quite pleased with the cleanliness of it all. However, I found
> surprising the default value of 8k PBKDF2 rounds.
>
> I know it is easy to override and I should have RTFM, but I (naively,
> I'll admit) assumed OpenBSD would pick very robust defaults, erring on
> the conservative side. Is it maybe time to bump it up, or pick it based
> on a quick machine benchmark?
>
> If there's consensus I might also provide a patch for the live benchmark
> option.
>
> Thank you
>
> [1]: https://blog.filippo.io/so-i-lost-my-openbsd-fde-password/
Since we do something like that for password bcrypt I'd say we are interested.
-Otto
