是否可以确定一个字节数组是否包含使用 PBKDF2WithHmacSHA1 散列的数据?有什么模式可以提供帮助吗?
【问题讨论】:
标签: encryption hmacsha1 pbkdf2
下面是我在 Scala 中解决问题的方法:
class Password(value: String, salt: Option[String]) {
private final val IterationCount = 2048
private final val KeyLength = 256
private final val SaltLength = KeyLength / 8
...
def hash = {
val zalt = if (salt.isDefined)
salt.get.getBytes(DefaultCharset)
else
SecureRandom.getInstance("SHA1PRNG").generateSeed(SaltLength)
val secretKeyFactory = SecretKeyFactory.getInstance("PBKDF2WithHmacSHA1")
val secretKey = secretKeyFactory.generateSecret(
new PBEKeySpec(value.toCharArray, zalt, IterationCount, KeyLength)
)
val byteBuffer = ByteBuffer.allocate(2 + KeyLength)
byteBuffer.putShort(KeyLength)
byteBuffer.put(secretKey.getEncoded)
new Password(
Base64.encodeBase64String(byteBuffer.array),
Some(new String(zalt, DefaultCharset))
)
}
def isHashed = Base64.decodeBase64(value).length > KeyLength
}
密钥的长度被添加到编码散列之前...并且要确定当前Password 实例是否经过散列,我只需检查整个缓冲区的长度——完整的源代码可用here .
【讨论】: