me again :
Jeffrey Goldberg, from AgileBits, the makers of 1Password, very quickly answered and criticised the test. He wrote :
So Elmsoft has to redo it again considering 1Password'd answers which resulted in a MUCH improved rating of 1Password (i.e., a better security than previously tested) :
https://blog.elcomsoft.com/2017/08/attacking-the-1password-master-password-follow-up/
So, what about Enpass ? is that PBKDF2-HMAC-SHA1 or PBKDF2-HMAC-SHA512 ? (I understand nothing to cryptology but, according to 1Password, the second is told to be more secure). In Enpass web site/Safety, I could only found, for my little understanding, mention of "only" PBKDF2 but no details about the variant actually used.
Kind regards, Francesco