Masked password support cryptography usage ------------------------------------------ Key: ELY-867 URL: https://issues.jboss.org/browse/ELY-867 Project: WildFly Elytron Issue Type: Bug Components: Passwords Reporter: Zoran Regvart Assignee: Ashley Abdel-Sayed Priority: Major I encountered couple of issues with cryptography used for password masking: * implementation of masked passwords drops initialization vector (IV) randomly generated by the {{javax.crypto.Cipher}} which makes unmasking (decryption) impossible. * the implementation is using the same algorithm for key derivation and encryption, which is not possible as there is no encryption support in {{javax.crypto.Cipher}} for PKDBF2 family of algorithms, they are supported only in {{javax.crypto.SecretKeyFactory}}