Imagine - the longer you are willing to wait - the stronger the encryption can be.
How long would you be willing to wait at boot for full disk encryption?
Cryptographers think 50 seconds is excessive. For me personally, even 5 minutes or even longer are not nice but acceptable if I knew - just speculation if there was such an algorithm - a let’s say 6/7 diceware passphrase could be stretched to 256 bits (speak: best currently available) strength.
This is just a questionnaire.
- password stretching - https://www.whonix.org/pipermail/whonix-devel/2018-September/001255.html