这是一个创建于 3149 天前的主题,其中的信息可能已经有所发展或是发生改变。
现在的邮箱还是直接存储明文密码进行登录校验的吗?为什么不是 hash 呢?
 |
1
honeycomb 2016-04-02 12:11:18 +08:00  1
f^n (密码加盐), f^n ( x )是 scrypt 等密钥生成函数多次(数千)迭代
|
|
5
honeycomb 2016-04-02 17:18:54 +08:00
@shyrock 那些裤应该是没有按照标准要求加密密码
这里有一个 Android 全盘加密的标准: https://source.android.com/security/encryption/ “ Generate random 16-byte disk encryption key (DEK) and 16-byte salt. Apply scrypt to the user password and the salt to produce 32-byte intermediate key 1 (IK1). Pad IK1 with zero bytes to the size of the hardware-bound private key (HBK). Specifically, we pad as: 00 || IK1 || 00..00; one zero byte, 32 IK1 bytes, 223 zero bytes. Sign padded IK1 with HBK to produce 256-byte IK2. Apply scrypt to IK2 and salt (same salt as step 2) to produce 32-byte IK3. Use the first 16 bytes of IK3 as KEK and the last 16 bytes as IV. Encrypt DEK with AES_CBC, with key KEK, and initialization vector IV.” |
Select Language