I have two network endpoints that need to use the same derived key. Can the server send the salt to the client 'in the clear'?
Asked
Active
Viewed 351 times
1 Answers
5
Yes. Salts are only there to make a particular key derivation globally unique. They have no requirement of secrecy.
Stephen Touset
- 11,002
- 1
- 38
- 53