Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]
Groups > comp.lang.java.programmer > #13338 > unrolled thread
| Started by | William Colls <william.colls@rogers.com> |
|---|---|
| First post | 2012-04-02 22:04 -0400 |
| Last post | 2012-04-02 23:27 -0700 |
| Articles | 4 — 4 participants |
Back to article view | Back to comp.lang.java.programmer
Password Based Encryption William Colls <william.colls@rogers.com> - 2012-04-02 22:04 -0400
Re: Password Based Encryption Arne Vajhøj <arne@vajhoej.dk> - 2012-04-02 22:13 -0400
Re: Password Based Encryption markspace <-@.> - 2012-04-02 19:26 -0700
Re: Password Based Encryption Roedy Green <see_website@mindprod.com.invalid> - 2012-04-02 23:27 -0700
| From | William Colls <william.colls@rogers.com> |
|---|---|
| Date | 2012-04-02 22:04 -0400 |
| Subject | Password Based Encryption |
| Message-ID | <jldlr6$bap$1@theodyn.ncf.ca> |
I am working on a project in which we will need to encrypt some files. For reason beyond my control, we will have to use Password Based Encryption, and for the most part we have that working. However, I have not, so far, been able to find any guidance that we can give our users with respect to the password it self: Minimum length? Maximum Length? Does case matter? We assume that the usual rules for "Strong Passwords" will apply. If anyone has useful pointers or links that will help in this regard, they will be greatly appreciated. Thanks for your time. William.
[toc] | [next] | [standalone]
| From | Arne Vajhøj <arne@vajhoej.dk> |
|---|---|
| Date | 2012-04-02 22:13 -0400 |
| Message-ID | <4f7a5ccf$0$294$14726298@news.sunsite.dk> |
| In reply to | #13338 |
On 4/2/2012 10:04 PM, William Colls wrote: > I am working on a project in which we will need to encrypt some files. > For reason beyond my control, we will have to use Password Based > Encryption, and for the most part we have that working. However, I have > not, so far, been able to find any guidance that we can give our users > with respect to the password it self: Minimum length? Maximum Length? > Does case matter? We assume that the usual rules for "Strong Passwords" > will apply. To fully utilize a standard encryption algorithm like AES 128 then you need a password that has 128 bits of real entropy and are nit in any dictionaries. That will be a relative long password. I guess you can call it passphrase! Arne
[toc] | [prev] | [next] | [standalone]
| From | markspace <-@.> |
|---|---|
| Date | 2012-04-02 19:26 -0700 |
| Message-ID | <jldn4v$7j3$1@dont-email.me> |
| In reply to | #13338 |
On 4/2/2012 7:04 PM, William Colls wrote: > > I am working on a project in which we will need to encrypt some files. > For reason beyond my control, we will have to use Password Based > Encryption, and for the most part we have that working. However, I have > not, so far, been able to find any guidance that we can give our users > with respect to the password it self: Minimum length? Maximum Length? > Does case matter? We assume that the usual rules for "Strong Passwords" > will apply. > > If anyone has useful pointers or links that will help in this regard, > they will be greatly appreciated. Iirc, there's quite a lot of algorithms that are grouped under the general description of "password based." Can you say specifically what you are using, and what parameters you use in the Java API? (I assume you're using the Java API.) Otherwise, there might be far to many options to really cover anything more than just general platitudes.
[toc] | [prev] | [next] | [standalone]
| From | Roedy Green <see_website@mindprod.com.invalid> |
|---|---|
| Date | 2012-04-02 23:27 -0700 |
| Message-ID | <mv5ln7hcibjp85vp69vt8utffrhjtk5g9u@4ax.com> |
| In reply to | #13338 |
On Mon, 02 Apr 2012 22:04:07 -0400, William Colls <william.colls@rogers.com> wrote, quoted or indirectly quoted someone who said : >I am working on a project in which we will need to encrypt some files. >For reason beyond my control, we will have to use Password Based >Encryption, and for the most part we have that working. However, I have >not, so far, been able to find any guidance that we can give our users >with respect to the password it self: Minimum length? Maximum Length? >Does case matter? We assume that the usual rules for "Strong Passwords" >will apply. see http://mindprod.com/jgloss/jce.html If will do most of the well known types of encryption. If you need something very lightweight that you can verify for yourself contains no trapdoors, see http://mindprod.com/products.html#TRANSPORTER -- Roedy Green Canadian Mind Products http://mindprod.com When you were a child, if you did your own experiment to see if it was better to put to cocoa into your cup first or the hot milk first, then you likely have the programmer gene..
[toc] | [prev] | [standalone]
Back to top | Article view | comp.lang.java.programmer
csiph-web