Re: Newbie question: best algorithm for keyword-based password generation



berzerk3K <bsmith3k@xxxxxxxxx> wrote:
What I would like to do, is both to:
A) Find the best way to protect [keyword] from already known
[password]

Easy.

B) Find the best way to protect [master_key] from already known
[password] + [keyword].

Impossible. That is, if it's possible to guess master_key, it will be
possible to verify that a guess is correct given password and keyword.

In the meantime I found a Password Generator which works exactly the
same.
However, I'm very suspicious about the algoritm they choosed. It's
detaily described in the documentation:
[...]
Is it really a good solution?

It's awful, but it may not be insecure.

--
Kristian Gjøsteen
.