On Monday, January 23, 2017 at 7:36:50 PM UTC-5, Alex Glaros wrote: > > is this correct: I need roughly 44 characters generated by my password > generator (no human/dictionary words) to contain about 256 bits of > randomness to obtain an AES 256-bit key? >
It depends on the exact character set, but I think that is roughly the idea. Note, you would also likely use some key stretching process (i.e., a "password based key derivation function"), which would make a somewhat shorter password effectively as difficult to crack as a longer password that wasn't key stretched. So, you could get 256-bit level of protection with a slightly shorter password. Anthony -- Resources: - http://web2py.com - http://web2py.com/book (Documentation) - http://github.com/web2py/web2py (Source code) - https://code.google.com/p/web2py/issues/list (Report Issues) --- You received this message because you are subscribed to the Google Groups "web2py-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to web2py+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/d/optout.
