[jboss-jira] [JBoss JIRA] (ELY-1189) Create better way of masking passwords using modern PBE algorithm
Peter Skopek (JIRA)
issues at jboss.org
Tue May 23 13:22:00 EDT 2017
[ https://issues.jboss.org/browse/ELY-1189?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13410846#comment-13410846 ]
Peter Skopek commented on ELY-1189:
-----------------------------------
dmlloyd commented on 11 Jan
This is a fair point @zregvart. But from an API perspective it can cause a problem since the IV necessarily has to impact the equality of a Password object, being a constituent part of its fields.
Since security is not really an expectation with masked passwords (it's a two-way password type with no ancillary information, meaning that if you have the mask string, you have the original password), it might make sense to have a separate MaskedPassword versus EncryptedPassword, the latter including an IV? Or maybe it's simply not worth worrying about the IV variants (since that's essentially a new feature).
> Create better way of masking passwords using modern PBE algorithm
> -----------------------------------------------------------------
>
> Key: ELY-1189
> URL: https://issues.jboss.org/browse/ELY-1189
> Project: WildFly Elytron
> Issue Type: Task
> Components: Credential Store
> Reporter: Peter Skopek
> Assignee: Peter Skopek
>
> Create better way of masking passwords using modern PBE algorithm.
> This bug contains discussion from PR: https://github.com/wildfly-security/wildfly-elytron/pull/619
> To have this documented and PR closed.
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
More information about the jboss-jira
mailing list