A string which will be added to the passphrase before encryption. The standard recommends a salt length of at least 64 bits (8 characters). The salt needs to be generated using a pseudo-random number generator (e.g SHA1PRNG)
The number of PBKDEF iterations to perform. A minimum recommended value is 1000
The length in bytes of the key to generate
Adobe ColdFusion Enterprise includes a java crypto provider that implements these algorithms. These algorithms are available only in enterprise versions:
For Lucee it is up to the provider that you have installed, if using the default java crypto provider it only supports "PBKDF2WithHmacSHA1" on Java 1.7 for example. If you are using Java 8 it supports more algorithms.
iterations and keySize parameters are optional in Lucee.