In other words, in the context of authenticated encryption using Encrypt-Then-MAC, is this stupid?:
derived_key = PBKDF(key, salt, dkLen=32)
hmac_key, enc_key = derived_key[:16], derived_key[16:]
It is advised that separate keys be used for MAC and encryption. Is this sufficient? If not, how dangerous is it?
