Plug.Crypto.KeyGenerator
Plug.Crypto.KeyGenerator
KeyGenerator
implements PBKDF2 (Password-Based Key Derivation Function 2), part of PKCS #5 v2.0 (Password-Based Cryptography Specification).
It can be used to derive a number of keys for various purposes from a given secret. This lets applications have a single secure secret, but avoid reusing that key in multiple incompatible contexts.
see http://tools.ietf.org/html/rfc2898#section-5.2
Summary
Functions
- generate(secret, salt, opts \\ [])
-
Returns a derived key suitable for use
Functions
generate(secret, salt, opts \\ [])
Returns a derived key suitable for use.
Options
-
:iterations
- defaults to 1000 (increase to at least 2^16 if used for passwords); -
:length
- a length in octets for the derived key. Defaults to 32; -
:digest
- an hmac function to use as the pseudo-random function. Defaults to:sha256
; -
:cache
- an ETS table name to be used as cache. Only use an ETS table as cache if the secret and salt is a bound set of values. For example::ets.new(:your_name, [:named_table, :public, read_concurrency: true])
© 2013 Plataformatec
Licensed under the Apache License, Version 2.0.
https://hexdocs.pm/plug/1.3.0/Plug.Crypto.KeyGenerator.html