The KDF used and iteration count should be included in the payload returned from encrypt to facilitate upgrades over time. This makes it possible to change the work factor or the algorithm used without breaking backward compatibility.

Library users should be encouraged to upgrade encrypted ciphertexts from time to time to take advantage of this too.