You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@knox.apache.org by "Krishna Pandey (JIRA)" <ji...@apache.org> on 2017/04/21 06:18:04 UTC

[jira] [Created] (KNOX-925) Configurable - Encryption Algorithm and it's key size, Salt and iteration count for PBKDF

Krishna Pandey created KNOX-925:
-----------------------------------

             Summary: Configurable - Encryption Algorithm and it's key size, Salt and iteration count for PBKDF
                 Key: KNOX-925
                 URL: https://issues.apache.org/jira/browse/KNOX-925
             Project: Apache Knox
          Issue Type: Improvement
          Components: Server
    Affects Versions: 0.11.0
            Reporter: Krishna Pandey


We can make key length configurable to be used with the RSA algorithm, so that Users can set the value as per current cryptography guidelines.

Also, in a password-based key derivation function, the base key is a password and the other parameters are a salt value and an iteration count. An iteration count has traditionally served the purpose of increasing the cost of generating keys from a password. We can keep the Scheme, Salt and Iteration Count configurable for Users to fine tune as per their requirements.



--
This message was sent by Atlassian JIRA
(v6.3.15#6346)