pbkdf2
for key generation is using HMAC
with SHA256
. But the default encryption key size with sjcl for AES-CCM
is only 128
bits. If you want AES-CCM-256
, I think you need to do the following, you also don't have to call pbkdf2
directly.
var encMessage =sjcl.encrypt(somePassword,message,{count:2048,salt:salt,ks:256});