Password Verification with PBKDF2 in Java

Question

I\'m doing password based file encryption in Java; I\'m using AES as the underlying encryption algorithm and PBKDF2WithHmacSHA1 to derive a key from a salt and

Answer 1

There is no "quick check" mechanism that is secure, by definition. The whole point of using PBKDF2 or related techniques is to make password checking slow, to foil password cracking programs. If you added a quick check system, password crackers would be able to guess passwords in bulk very quickly.