Key derivation

Purpose

can be used as a key derivation function (KDF) for high-entropy keys. It takes the following parameters to produce 256 to 512 bits of output keying material:

256 to 512 bits of input keying material (e.g. a shared secret).
A 128-bit personalization constant (e.g. an application/protocol name).
A 128-bit salt (e.g. a or data).
Optional contextual info of any length (e.g. an explanation of what the key will be used for).

This allows you to derive new, distinct keys from a high-entropy master key. For example, separate keys for encryption and authentication with by changing the personalization constant, salt, and/or info.

BLAKE2b is NOT suitable for deriving keys from passwords. Use instead.

256-bit keys are recommended. Larger keys are unnecessary.

Usage

DeriveKey

Fills a span with output keying material computed from input keying material, a personalization constant, a salt, and optional additional contextual info.

BLAKE2b.DeriveKey(Span<byte> outputKeyingMaterial, ReadOnlySpan<byte> inputKeyingMaterial, ReadOnlySpan<byte> personalization, ReadOnlySpan<byte> salt = default, ReadOnlySpan<byte> info = default)

Exceptions

outputKeyingMaterial has a length less than MinKeySize or greater than MaxKeySize.

inputKeyingMaterial has a length less than MinKeySize or greater than MaxKeySize.

personalization has a length not equal to PersonalSize.

salt has a length greater than 0 but not equal to SaltSize.

The key could not be derived.

Constants

These are used for validation and/or save you defining your own constants.

public const int KeySize = 32;
public const int SaltSize = 16;
public const int PersonalSize = 16;
public const int MinKeySize = 32;
public const int MaxKeySize = 64;

Notes

The input keying material MUST be high in entropy (e.g. a shared secret).

Do NOT use the same output keying material for multiple purposes (e.g. encryption and authentication). You should derive separate keys using the same input keying material and personalization but different salts and/or info.

Last updated 1 year ago

Purpose

can be used as a key derivation function (KDF) for high-entropy keys. It takes the following parameters to produce 256 to 512 bits of output keying material:

256 to 512 bits of input keying material (e.g. a shared secret).
A 128-bit personalization constant (e.g. an application/protocol name).
A 128-bit salt (e.g. a or data).
Optional contextual info of any length (e.g. an explanation of what the key will be used for).

BLAKE2b is NOT suitable for deriving keys from passwords. Use instead.

256-bit keys are recommended. Larger keys are unnecessary.

Usage

DeriveKey

Fills a span with output keying material computed from input keying material, a personalization constant, a salt, and optional additional contextual info.

BLAKE2b.DeriveKey(Span<byte> outputKeyingMaterial, ReadOnlySpan<byte> inputKeyingMaterial, ReadOnlySpan<byte> personalization, ReadOnlySpan<byte> salt = default, ReadOnlySpan<byte> info = default)

Exceptions

outputKeyingMaterial has a length less than MinKeySize or greater than MaxKeySize.

inputKeyingMaterial has a length less than MinKeySize or greater than MaxKeySize.

personalization has a length not equal to PersonalSize.

salt has a length greater than 0 but not equal to SaltSize.

The key could not be derived.

Constants

These are used for validation and/or save you defining your own constants.

public const int KeySize = 32;
public const int SaltSize = 16;
public const int PersonalSize = 16;
public const int MinKeySize = 32;
public const int MaxKeySize = 64;

Notes

The input keying material MUST be high in entropy (e.g. a shared secret).

If you intend to feed multiple variable-length inputs into the info, beware of . Please read the page for more information.