'RE: AW: [dev-crypto] IV from makePBEParameters for PKCS #5 PBES2'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       bouncycastle-crypto-dev
Subject:    RE: AW: [dev-crypto] IV from makePBEParameters for PKCS #5 PBES2
From:       "Eckenfels. Bernd" <B.Eckenfels () seeburger ! de>
Date:       2014-01-30 22:08:21
Message-ID: ED12D06EC205E3458FC3E23CD84D4ED5DDB33538 () DEDCEXCH01 ! seeburger ! de
[Download RAW message or body]

What would be the right way to define the password->byte conversion? Is that possible \
with the parametersspec as well? For example PKCS5 ASCII passwords or PKCS12 \
"nulnul-terminated BMP Strings". Thats required for the PBEKeySpec(char[]) version.

________________________________________
From: David Hook [dgh@autochthonous.org]
Sent: Thursday, January 30, 2014 21:37
Cc: dev-crypto@bouncycastle.org
Subject: Re: AW: [dev-crypto] IV from makePBEParameters for PKCS #5 PBES2

Yes the new parameter spec structure will allow us to do it this way as
well (actually a few other things too).

Regards,

David

On 31/01/14 02:17, Benjamin Weggenmann wrote:
> Uri, David,
> 
> Thanks for your comments.
> 
> But still, rather than interpreting the standard according to the implementation, I \
> would rather have the implementation subject to the standard. 
> As additional reference to the sample implementation, let's see what's coming up in \
> Java 8: http://marc.info/?l=openjdk-security-dev&m=135796942207347&w=1
> 
> There is an additional PBEParameterSpec constructor with an AlgorithmParameterSpec \
> parameter, which can be used to specify the initialization vector (through an \
> IvParameterSpec). The documentation already includes this: \
> http://download.java.net/jdk8/docs/api/javax/crypto/spec/PBEParameterSpec.html#PBEParameterSpec-byte:A-int-java.security.spec.AlgorithmParameterSpec-
>  
> 










SEEBURGER AG            Vorstand/Seeburger Executive Board:
Sitz der Gesellschaft/Registered Office:                Bernd Seeburger, Axel Haas, \
Michael Kleeberg Edisonstr. 1
D-75015 Bretten         Vorsitzender des Aufsichtsrats/Chairperson of the Seeburger \
                Supervisory Board:
Tel.: 07252 / 96 - 0            Dr. Franz Scherer
Fax: 07252 / 96 - 2222
Internet: http://www.seeburger.de               Registergericht/Commercial Register:
e-mail: info@seeburger.de               HRB 240708 Mannheim


Dieses E-Mail ist nur für den Empfänger bestimmt, an den es gerichtet ist und kann \
vertrauliches bzw. unter das Berufsgeheimnis fallendes Material enthalten. Jegliche \
darin enthaltene Ansicht oder Meinungsäußerung ist die des Autors und stellt nicht \
notwendigerweise die Ansicht oder Meinung der SEEBURGER AG dar. Sind Sie nicht der \
Empfänger, so haben Sie diese E-Mail irrtümlich erhalten und jegliche Verwendung, \
Veröffentlichung, Weiterleitung, Abschrift oder jeglicher Druck dieser E-Mail ist \
strengstens untersagt. Weder die SEEBURGER AG noch der Absender ( Eckenfels. Bernd ) \
übernehmen die Haftung für Viren; es obliegt Ihrer Verantwortung, die E-Mail und \
deren Anhänge auf Viren zu prüfen.


The present email addresses only the addressee which it targets and may contain \
confidential material that may be protected by the professional secret. The opinions \
reflected herein are not necessarily the one of the SEEBURGER AG. If you are not the \
addressee, you have accidentally got this email and are not enabled to use, publish, \
forward, copy or print it in any way. Neither SEEBURGER AG , nor the sender \
(Eckenfels. Bernd) are liable for viruses, being your own responsibility to check \
this email and its attachments for this purpose.


[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic