[jboss-jira] [JBoss JIRA] (ELY-1189) Create better way of masking passwords using modern PBE algorithm
Peter Skopek (JIRA)
issues at jboss.org
Tue May 23 13:22:00 EDT 2017
[ https://issues.jboss.org/browse/ELY-1189?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13410845#comment-13410845 ]
Peter Skopek commented on ELY-1189:
-----------------------------------
zregvart commented on 11 Jan
Good discussion guys, let me just jump in with a little tidbit, even though RFC2898 defines PBKDF1, there is clear wording on not actually using it (Section 5[1]).
My point being that PBE algorithms that do not need persistence of IV would only be deprecated ones (SHA1/RC4 and MD5/DES) that are still using PBKDF1 mode. So it might make sense to include IV in the MaskedPassword by default.
[1] https://tools.ietf.org/html/rfc2898#section-5
> Create better way of masking passwords using modern PBE algorithm
> -----------------------------------------------------------------
>
> Key: ELY-1189
> URL: https://issues.jboss.org/browse/ELY-1189
> Project: WildFly Elytron
> Issue Type: Task
> Components: Credential Store
> Reporter: Peter Skopek
> Assignee: Peter Skopek
>
> Create better way of masking passwords using modern PBE algorithm.
> This bug contains discussion from PR: https://github.com/wildfly-security/wildfly-elytron/pull/619
> To have this documented and PR closed.
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
More information about the jboss-jira
mailing list