kdf

Delving into the java encryption and hashing world I see examples of the constructor for the PBEKeySpec class with various values for the iterationCount and the keyLength parameters. Nothing seems to explain what these parameters impact or mean. I am assuming that keyLength is how long the key is so 32 bit encryption would take a value of 32 for the key length, but that assumption feels wrong. My guess for the iterationCount is the number of times each char is encrypted, again not feeling the love on that assumption either. Links to info or an explanation are appreciated. The iteration count

For example, the command: openssl enc -aes-256-cbc -a -in test.txt -k pinkrhino -nosalt -p -out openssl_output.txt outputs something like: key = 33D890D33F91D52FC9B405A0DDA65336C3C4B557A3D79FE69AB674BE82C5C3D2 iv = 677C95C475C0E057B739750748608A49 How is that key generated? (C code as an answer would be too awesome to ask for :) ) Also, how is the iv generated? Looks like some kind of hex to me. indiv OpenSSL uses the function EVP_BytesToKey . You can find the call to it in apps/enc.c . The enc utility used to use the MD5 digest by default in the Key Derivation Algorithm (KDF) if you didn't