Hacker News new | ask | show | jobs
by CameronNemo 1926 days ago
Crypto optimizations are no joke. My Pinebook Pro takes several seconds longer than my T430 to decrypt my keepassxc database.
2 comments
akvadrako 1926 days ago
Maybe the time is hashing your password. This is designed to take as long as it can while still being reasonable. 1 second on a fast machine isn't unheard of.
link
coldtea 1926 days ago
Why would it need to decrypt a whole database though, and not just the required password? To avoid leaking the key name?
link
CameronNemo 1926 days ago
Yes I think it is an all or nothing deal.
link
coldtea 1926 days ago
Perhaps it could be a two-level thing then, where you first decrypt e.g. the list of keys and then read the one you want and get a "start/end" offset to read/decrypt just the value for that key from another file. So keys and values are still decrypted, but you don't have to decrypt the whole bundle in one step to get the value.
link