rocki wrote:This is nonsense...
Assume you want to create a new truecrypt container
and I'm the attacker and I give you the plaintext password or keyfile.
Does it make a difference if the password or keyfile gets hashed by crc32, sha-256 hash or sha-512 hmac or a KDF that needs 100 petaflops per attempt?
Maybe you know somthing I don't. I assume that if I modify jpeg files to have a crc32 value of 0, and that if I do that to all photos in an album, then you can choose any set of those photos you like as key files, but they will not change the derived key. The derived key would not depend on them in any way. Is this right? If so, then yes, sha-256 would solve that (very minor) problem.