[jira] [Updated] (DERBY-5550) Document derby.authentication.builtin.saltLength and derby.authentication.builtin.iterations

Mon, 26 Mar 2012 11:44:49 -0700 

     [ 
https://issues.apache.org/jira/browse/DERBY-5550?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Kim Haase updated DERBY-5550:
-----------------------------

    Attachment: DERBY-5550.zip
                DERBY-5550.stat
                DERBY-5550.diff

Thanks very much, Knut, for the quick reply! 

I'm attaching DERBY-5550.diff, DERBY-5550.stat, and DERBY-5550.zip, with 
changes as follows:

M       src/ref/crefproper22250.dita
A       src/ref/rrefproperiterations.dita
A       src/ref/rrefpropersaltlength.dita
M       src/ref/refderby.ditamap
M       src/devguide/rdevcsecure557.dita
M       src/devguide/cdevcsecurenativeauth.dita

In addition to adding topics for the two new properties, I added them to the 
table of properties in the Reference Manual and, in the Developer's Guide, 
added mentions of them to the NATIVE authentication topic and the list of 
authentication-related properties.

Please let me know of any changes that are needed. There might also be other 
topics that should mention these properties. Thanks again!
                
> Document derby.authentication.builtin.saltLength and 
> derby.authentication.builtin.iterations
> --------------------------------------------------------------------------------------------
>
>                 Key: DERBY-5550
>                 URL: https://issues.apache.org/jira/browse/DERBY-5550
>             Project: Derby
>          Issue Type: Improvement
>          Components: Documentation
>    Affects Versions: 10.9.0.0
>            Reporter: Knut Anders Hatlen
>            Assignee: Kim Haase
>         Attachments: DERBY-5550.diff, DERBY-5550.stat, DERBY-5550.zip
>
>
> DERBY-5539 introduced two new properties that control how BUILTIN stores 
> credentials:
> - derby.authentication.builtin.saltLength (default: 16)
> This property specifies the number of bytes of random salt that will be added 
> to the credentials before hashing them. (Purpose of the property: Make it 
> infeasible to construct rainbow tables.)
> - derby.authentication.builtin.iterations (default: 1000, minimum: 1)
> This property specifies the number of times to apply the hash function (which 
> is specified by derby.authentication.builtin.algorithm) on the credentials. 
> (Purpose of the property: Slow down attackers as they'll need to spend more 
> time calculating hashes.)
> Both the properties have effect only if BUILTIN authentication is enabled and 
> derby.authentication.builtin.algorithm has a non-null value.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: 
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

Reply via email to