[ 
https://issues.apache.org/jira/browse/OFBIZ-8537?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15721910#comment-15721910
 ] 

Jacques Le Roux commented on OFBIZ-8537:
----------------------------------------

Hi Guys we crossed on wire, see my comments at 
http://markmail.org/message/n6mpoklnecsmmuwi

I was not aware that "PBKDF2 is not compliant with RFC standard" as you said 
Jinghai. Where can I find this information?

BTW note that it has already been superceded 
https://en.wikipedia.org/wiki/PBKDF2#Alternatives_to_PBKDF2

> LoginWorker HashCrypt the type of hash for one-way encryption
> -------------------------------------------------------------
>
>                 Key: OFBIZ-8537
>                 URL: https://issues.apache.org/jira/browse/OFBIZ-8537
>             Project: OFBiz
>          Issue Type: New Feature
>          Components: framework
>    Affects Versions: Trunk
>            Reporter: wangjunyuan
>            Assignee: Shi Jinghai
>            Priority: Minor
>              Labels: HashCrypt, PBKDF2, security.properties
>         Attachments: HashCrypt.patch
>
>
> PBKDF2 (Password-Based Key Derivation Function 2) is part of RSA 
> Laboratories' Public-Key Cryptography Standards (PKCS) series, specifically 
> PKCS #5 v2.0, also published as Internet Engineering Task Force's RFC 2898. 
> It replaces an earlier key derivation function, PBKDF1, which could only 
> produce derived keys up to 160 bits long.Add this function to ofbiz ,this 
> PBKDF2 has four types in 
> Javaļ¼š'PBKDF2WithHmacSHA1','PBKDF2WithHmacSHA256','PBKDF2WithHmacSHA384','PBKDF2WithHmacSHA512'



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Reply via email to