## Key Derivation from Password
Symmetric encryption works using an encryption key rather than using a password. Encryption keys are not human friendly, these are long and impossible to remember. On the other hand passwords or passphrases are shorter and easier to remember. In order to use password for encryption, we need a way to transform password into encryption key. This is done using a **Key Derivation Function (KDF)**.

## Password Based Key Derivation Function (PBKDF)
Produces secret keys from low entropy data like passwords. PBKDF can also be used for password hashing. Following are the parameters of a KDF:
- Input Key Material (IKM): password in this case
- Salt: randomly generated data used to add more randomness to the process and hinder pre-computed hash attacks. Salt can be public or secret, recommended size is atleast 128 bits
- Info: application-specific information. It does not add security but can be useful for binding key material to its usage
- Pseudorandom Function (PRF)
- Function-specific, brute-force-resistant parameter(s). For many KDFs, it is just an iteration count
- Output Key Material (OKM) size: size of the generated secret key, for example 256 bits.

Of all the parameters mentioned, only the IKM is considered secret.

## OpenSSL
Supports two most popular KDF mechanisms **PBKDF2** and **scrypt**. Both support tunable iteration counts. PBKDF2 is computationally intensive, whereas scrypt is both computationally and memory intensive.

**Generating key using scrypt:** first generate a salt
```bash
$ openssl rand -hex 16
3c296974b9f2343a6b8898d0338e1113
$ openssl kdf -keylen 32 -kdfopt 'pass:Pa$$w0rD' -kdfopt hexsalt:3c296974b9f2343a6b8898d0338e1113 -kdfopt n:65536 -kdfopt r:8 -kdfopt p:1 SCRYPT
59:69:01:AD:85:00:2A:AF:75:F4:BA:A5:84:30:A9:B5:30:1C:25:64:43:73:32:C9:37:FA:EC:DD:A8:6A:9C:12
```