⇄ Σ = Mᄃ² ⇆
Follow

Bitwarden to increase its server-side iterations to 600,000

It is not clear whether this will affect existing user accounts, the company has responded to queries that it is working on it. But you don't have to wait for them to act, you can change it manually right now.

Changing KDF iterations(screenshots)

Why 600,000? It is the number of KDF iterations that the Open Web Application Security Project (OWASP) recommends

cheatsheetseries.owasp.org/che

· 1· 2· 3
⇄ Σ = Mᄃ² ⇆  

Until recently, OWASP actually recommended 310,000 as the default number of iterations. But that seems to have nearly doubled over the past week. Even Bitwarden's message on Mastodon does mention that the initial plan was to set the KDF iterations to 350,000, but then they decided to go with 600,000.

fosstodon.org/@bitwarden/10973

1
⇄ Σ = Mᄃ² ⇆  

BTW via Bitwarden site

just a heads up

Though the risk involved in rotating your encryption key does not exist when changing KDF iteration count, we still recommend exporting your vault beforehand

bitwarden.com/help/what-encryp

0
Sign in to participate in the conversation

CounterSocial is the first Social Network Platform to take a zero-tolerance stance to hostile nations, bot accounts and trolls who are weaponizing OUR social media platforms and freedoms to engage in influence operations against us. And we're here to counter it.

Resources

Developers

What is CounterSocial?

Created by potrace 1.15, written by Peter Selinger 2001-2017

counter.social

More…