pub fn insecure_pbkdf2_hmac_sha1(
out_key: &mut [u8]
PBKDF2-HMAC-SHA1 is considered insecure
INSECURE: The PBKDF2 Key Derivation Function over HMAC-SHA1.
PBKDF2-HMAC-SHA1 is considered insecure, and should only be used for compatibility with legacy applications.
iter iterations of PBKDF2-HMAC-SHA1 of
salt. It stores the result in
PBKDF2 is defined in RSA Security LLC's Public Key Cryptography Standards #5 (PKCS #5) v2.0. For details, see RFC 2898 Section 5.2.
While PBKDF2 can produce any amount of key output, the entropy of its output is bounded by the internal state. Be careful that the output key has enough entropy for your needs. See RFC 2898 Appendix B.1 for a discussion on calculating the effective entropy of PBKDF2, but keep in mind that SHA-1's insecurities may affect this analysis! Also remember that new attacks are sometimes discovered, and it is your responsibility to keep up with the latest attacks; RFC 2898's analysis may not be valid forever!