[
https://issues.apache.org/jira/browse/OFBIZ-8537?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15721910#comment-15721910 ]
Jacques Le Roux commented on OFBIZ-8537:
----------------------------------------
Hi Guys we crossed on wire, see my comments at
http://markmail.org/message/n6mpoklnecsmmuwiI was not aware that "PBKDF2 is not compliant with RFC standard" as you said Jinghai. Where can I find this information?
BTW note that it has already been superceded
https://en.wikipedia.org/wiki/PBKDF2#Alternatives_to_PBKDF2> LoginWorker HashCrypt the type of hash for one-way encryption
> -------------------------------------------------------------
>
> Key: OFBIZ-8537
> URL:
https://issues.apache.org/jira/browse/OFBIZ-8537> Project: OFBiz
> Issue Type: New Feature
> Components: framework
> Affects Versions: Trunk
> Reporter: wangjunyuan
> Assignee: Shi Jinghai
> Priority: Minor
> Labels: HashCrypt, PBKDF2, security.properties
> Attachments: HashCrypt.patch
>
>
> PBKDF2 (Password-Based Key Derivation Function 2) is part of RSA Laboratories' Public-Key Cryptography Standards (PKCS) series, specifically PKCS #5 v2.0, also published as Internet Engineering Task Force's RFC 2898. It replaces an earlier key derivation function, PBKDF1, which could only produce derived keys up to 160 bits long.Add this function to ofbiz ,this PBKDF2 has four types in Javaļ¼'PBKDF2WithHmacSHA1','PBKDF2WithHmacSHA256','PBKDF2WithHmacSHA384','PBKDF2WithHmacSHA512'
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
Locked
