Fredrik Thulin fredrik@thulin.net writes:
I just published a module used in some PBKDF2-HMAC-SHA512 testing I've been doing under a contract with NORDUnet A/S.
Cool. Why SHA512 rather than SHA256, is using it specified somewhere?
If PBKDF2-HMAC-SHA512 is widely used, it would sense to add a convenience function pbkdf2_hmac_sha512 to nettle.
What's the source of your test vectors? It would be nice with additional test vectors also for nettle's testsuite/pbkdf2-test.c.
I invoke the new PBKDF2 functions in libnettle using Python ctypes, which achieves a ~ 25x speedup compared to the standard python-pbkdf2 that uses SHA512 from hashlib (presumably a C function), but does the xoring in native Python.
Is the speed of sha512 itself comparable? Nettle's implementatiion is fairly straight-forward C code.
If someone has access to a modern AMD CPU, I would be very interested in getting the benchmark output of examples/pbkdf2-plot on that machine. Thanks.
My machine at home is a lowend but reasonably modern AMD, E-350, iirc. I'm not very familiar with python, but if you tell me the steps needed to get the benchmark running on a debian system I can give it a try.
Regards, /Niels