Suppose I have an application, which when opened asks you to open a file and then “unlock” that file using a password that’s configurable by the user.
The file should be encrypted with something like
AES-256, right? The key would be the password, but should the users password be hashed using something like
SHA-256? Should I salt the hash as well? If I do salt the hash, do I just store the salt at the start of the file?
Is this the correct way to go about things?