This project has moved and is read-only. For the latest updates, please go here.

Hash Algorithm DropDown

Topics: Feature Requests
Jan 12, 2016 at 12:10 AM
TrueCrypt did not have this exposed so I was wondering why would Hash Algorithm be necessary to be exposed VeraCrypt? Wouldn't this be a security concern.

Can this be removed?
Jan 12, 2016 at 2:04 AM
Per the audit performed on TrueCrypt, the hash iterations are too low and can be performed very quickly in TrueCrypt allowing it to try all hash algorithms very quickly. VeraCrypt uses a higher number of iterations for each hash. The drop-down box and default hash located in Settings > Default Mount Parameters allows to user to shorten the mount volume wait time by telling the VC application which hash to use when mounting a volume to avoid longer mount times when using Autodectection.

If you are willing to wait longer for your volumes to mount, merely set the Default Mount Parameters > PKCS-5 PRF > Autodetection (this is the default unless you changed the value).

You can leave the drop-down box to use Autodetection instead of selecting the correct hash algorithm for the volume.

I understand that some people prefer to not expose which encryption, hash and PIM value they have used for their volumes to increase the difficulty on a attacker. Therefore, by providing the both the drop-down and the ability to set the default hash option as outlined above satisfies the users who do not want to expose which algorithms they are using and users that want faster mount times.

Kind Regards.