[
https://issues.apache.org/jira/browse/DERBY-5550?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13238466#comment-13238466
]
Knut Anders Hatlen commented on DERBY-5550:
-------------------------------------------
Hi Kim,
These properties are dynamic.
> Document derby.authentication.builtin.saltLength and
> derby.authentication.builtin.iterations
> --------------------------------------------------------------------------------------------
>
> Key: DERBY-5550
> URL: https://issues.apache.org/jira/browse/DERBY-5550
> Project: Derby
> Issue Type: Improvement
> Components: Documentation
> Affects Versions: 10.9.0.0
> Reporter: Knut Anders Hatlen
> Assignee: Kim Haase
>
> DERBY-5539 introduced two new properties that control how BUILTIN stores
> credentials:
> - derby.authentication.builtin.saltLength (default: 16)
> This property specifies the number of bytes of random salt that will be added
> to the credentials before hashing them. (Purpose of the property: Make it
> infeasible to construct rainbow tables.)
> - derby.authentication.builtin.iterations (default: 1000, minimum: 1)
> This property specifies the number of times to apply the hash function (which
> is specified by derby.authentication.builtin.algorithm) on the credentials.
> (Purpose of the property: Slow down attackers as they'll need to spend more
> time calculating hashes.)
> Both the properties have effect only if BUILTIN authentication is enabled and
> derby.authentication.builtin.algorithm has a non-null value.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
