What is password-based encryption?

I'm very interested in this cryptography method, but have little information about it! If I have a password and a byte[] plaintext, will I obtain a byte[] cyphertext by encryption? And having the same password and the byte[] cyphertext, will I obtain the byte[] plaintext by decryption?

Steps for Password-Based Encryption:
- Get the password (usually an Unicode string)
- Transform it to bytes (using the encoding that is mandated by the standard)
- Pass the bytes to a function (like PBKDF2, defined in PKCS#5 v.2.0) whose inputs are the password and a random-chosen byte array called 'salt', and whose outputs are a key and an 'initialization vector' (a byte array that's used by some encryption modes, like CBC, CFB or OFB).
- You'll need to send the following data to the receiver to the message:
* The salt
* The encrypted data
- The receiver that knows the password will get the salt, and recover the key and the initialization vector using the algorithm mentioned above. Then he/she can decipher the encrypted data.

Similar Messages

  • HT1222 i forgot my password at encrypt iphone back up.what should i do? please help me. thank you

    i forgot my password at encrypt iphone back up.what should i do? please help me. thank you

    Restore the device as new and setup as you desire.

  • How can I switch from auto_login wallet to password-protected encryption wallet in 12c  ?

    How can I switch from auto_login wallet to password-protected encryption wallet in 12c
    --Now the autologin wallet is in effect
    SQL> select * from v$encryption_wallet
      2  ;
    WRL_TYPE
    WRL_PARAMETER
    STATUS       WALLET_TYPE    WALLET_OR FULLY_BAC
        CON_ID
    FILE
    /acfs3/wallet
    OPEN       AUTOLOGIN    SINGLE    NO
      0
    --I need to export the keys and it informs me to use password-based keystore
    SQL> ADMINISTER KEY MANAGEMENT export KEYS with secret tde_1234 to '/home/oracle/dumpdir/orapdba.wallet' IDENTIFIED BY "tde_1234";
    ADMINISTER KEY MANAGEMENT export KEYS with secret tde_1234 to '/home/oracle/dumpdir/orapdba.wallet' IDENTIFIED BY "tde_1234"
    ERROR at line 1:
    ORA-28417: password-based keystore is not open
    --So I try to close the autologin keystore and open the password-based keystore, but the autologin keystore cannot be closed
    SQL>  administer key management set keystore close;
    administer key management set keystore close
    ERROR at line 1:
    ORA-28365: wallet is not open
    SQL> administer key management set keystore open identified by "tde_1234";
    administer key management set keystore open identified by "tde_1234"
    ERROR at line 1:
    ORA-28354: Encryption wallet, auto login wallet, or HSM is already open
    So My question is
    How to switch from auto_login keystore to password-protected keystore ?

    Remove the cwallet.sso file and check the wallet status in v$encryption_wallet.
    If it is not opened, try to open it with administer key statement.
    Check the status again.

  • I'm trying to restore my Ipod touch from a backup however I don't remember the password, how do I find out what the password is?

    My ipod was sent into reset mode when it was pluged into my bf's computer. I pluged it into my computer where itunes is and itunes said I had to reset it, so I did and now I'm trying to restore it from a back up in itunes. Which I didn't know exsisted and didn't set up but it's locked with a password and I have no idea what the password is. Is there a way for me to find out?

    - If the backup has a password (called encrypted backup) then you either have to remember password or correctly guess the passcode or set up the iPod as new.
    - A fw other users have reported the same problem. Tyr using other passwords like your Apple ID PW:

  • Irregular failure to authenticate OpenDirectory users via password-based ssh

    TL;DR - my Yosemite Open Directory server irregularly fails to properly authenticate users (via password-based ssh). 
    I recently moved an Open Directory server from an Xserve running 10.6 to a new Mini running 10.10.  I archived the OD config on the Xserve and then took it offline.  Then I brought the Mini online using the same hostname/IP address, created a new OD master using the archived configuration.  Everything seemed to work well, however sometimes the server will not authenticate users via password when logging in with ssh/sftp/scp.  This is also true of a few OS X machines that bind to the OD server (i.e. they usually authenticate users properly, but sometimes fail for no discernable reason). 
    The failures are only for password authentication using ssh.  Other mechanisms do not exhibit the auth failures.  For instance, AFP and SMB user auth never fails (with proper credentials).  Nor do users to a FileMaker Server machine that authenticate via the OD server have problems.  Public key based ssh authentication never fails.  Local accounts (non-OD, aka "Local Network Accounts") also do not fail using password-based authentication.
    The failures are irregular.  The only pattern that I can find at all is that sometimes when the failures start happening, they keep happening continuously until...at some point they work properly again.  That is, they may fail from 11:15 am to 2:01 pm, and if so, then all of them fail in that time range.  Sometimes that time range lasts seconds, sometimes it lasts hours.
    The time range failure pattern is host specific.  For instance, if password authentication is failing on the main OD server, authentication may be fine on the other bound machines.  If authentication is failing on one of the bound machines, then it may be fine on all others and fine on the OD server itself.
    The failure pattern does not seem to correlate to any other events or activity on the server (even remotely).  CPU utilization never gets above about 15%.  Memory utilization is similarly very low.  Network traffic is occasionally high, but it does not seem in any way related to the auth failures.  There are not other log messages that occur before or after the failures with any consistency.
    I've been monitoring the auth failures by attempting to login to the OD server and two other bound hosts once per minute so that I can tell when the auth is failing (before getting calls from the users). 
    The adaptive firewall is not running on the OD server.  Nor is any other firewall.
    Below are a comparison of the system.log entries for a failed and successful auth (I've stripped out those lines that are identical in both instances).  The log entries have been sanatized as described.
    Rebooting the OD server does not affect the bound clients' authentication.  Rebooting the OD server is problematic, and I cannot do it often.  When I do, sometimes failures start soon after reboot, and sometimes that don't come back for many hours - again, no discernable pattern.
    If anyone has any ideas what I can do to discover the source of this problem and come up with a solution, I'd very much appreciate it.  Note that I'm aware that I can export all users and group and reconstruct a new, clean OD master, but without the ability to save the passwords, this becomes a large logisitcal problem, and I'm saving it as a last resort (particularly since if it doesn't solve my problem, I will have inconvenienced many users and be right back in the same place).
    Thanks for reading.
    First failure:
        Feb 11 00:00:20 odserver.myorg.gov kdc[67]: TGS-REQ [email protected] from 127.0.0.1:65373 for host/[email protected] [canonicalize, forwardable]
        Feb 11 00:00:20 odserver.myorg.gov opendirectoryd[67268]: GSSAPI Error:  Miscellaneous failure (see text (unable to reach any KDC in realm ODSERVER.MYORG.GOV, tried 2 KDCs (negative cache))
        Feb 11 00:00:20 odserver.myorg.gov sshd[72974]: error: PAM: authentication error for myusername from clienthost.myorg.gov via 10.50.50.50
        Feb 11 00:00:20 odserver.myorg.gov sshd[72974]: Connection closed by 10.50.50.99 [preauth]
    Now successful auth:
        Feb 11 01:03:20 odserver.myorg.gov kdc[67]: TGS-REQ [email protected] from 127.0.0.1:63978 for host/[email protected] [canonicalize, forwardable]
        Feb 11 01:03:20 odserver.myorg.gov kdc[67]: TGS-REQ [email protected] from 127.0.0.1:62346 for ldap/[email protected] [canonicalize, forwardable]
        Feb 11 01:03:20 odserver.myorg.gov sshd[73786]: Accepted keyboard-interactive/pam for myusername from 10.50.50.99 port 53361 ssh2
        Feb 11 01:03:20 odserver.myorg.gov NetAuthSysAgent[73789]: GetStatus: connecting to self not allowed
       Feb 11 01:03:20 odserver.myorg.gov NetAuthSysAgent[73789]: ERROR: AFP_GetServerInfo - connect failed 62
    I've sanitized the entries as follows, replacing...
    My username by myusername
    The ssh source host IP address by 10.50.50.99
    The ssh source hostname by clienthost.myorg.gov
    The server hostname by odserver.myorg.gov
    The server hostname (in caps) by ODSERVER.MYORG.GOV
    The server IP address by 10.50.50.50

    Hello James,
    I have not had a chance to look for the Router configuration document, however, for one of my certificate exams I did configure Authentication Proxy on an IOS router. The config for that lab was:
    aaa new-model
    aaa authentication login default group tacacs+ local
    aaa authorization auth-proxy default group tacacs+ local
    aaa session-id common
    ip auth-proxy name AUTHPROXY http inactivity-time 60
    interface FastEthernet0/0
    ip address 192.168.250.19 255.255.255.0
    ip nat outside
    ip virtual-reassembly
    duplex auto
    speed auto
    interface FastEthernet0/1
    ip address 192.168.200.120 255.255.255.0
    ip access-group 110 in
    ip nat inside
    ip virtual-reassembly
    ip auth-proxy AUTHPROXY
    duplex auto
    speed auto
    ip route 0.0.0.0 0.0.0.0 192.168.250.1
    ip http server
    ip http authentication aaa
    no ip http secure-server
    ip nat inside source list nat interface FastEthernet0/0 overload
    ip access-list extended nat
    permit ip 192.168.200.0 0.0.0.255 any
    access-list 110 permit ip any any
    tacacs-server host 192.168.250.20
    tacacs-server key cisco123
    end
    Please check if the commands are supported on your router as well.
    If this ws helpful please rate.
    Regards.

  • How can I make a password protected encrypted sparse image?

    How can I make a password protected encrypted sparse image?
    Doing what worked in 2006 does not produce password protection even though I have typed one in and re-entered it as requested. Clicking on the Disk image opens it without asking for the password.  I am stumped.   Many thanks.
    (OS 10.10.2 on 2010 MacPro)

    John Roehm wrote:
    That did it. The Keychain box was automatically checked and I did not know enough to uncheck it. Many many thanks.
    Yeah, nobody does. They should put up a custom password save box when you make an encrypted disk image that explains what will happen if you store the password in the keychain. In the current "how-to" article, they mention it, though: How to create a password-protected (encrypted) disk image - Apple Support

  • User Name- and Password-Based Mutual Authentication

    Hi,
    The J2EE 1.4 Tutorial Update 1 shows an example of Client-Certificate Authentication over HTTP/SSL with JAX-RPC, but no User Name- and Password-Based Mutual Authentication example.
    Does this work the same? Does the client need a certificate for User Name- and Password-Based Mutual Authentication?
    I created my own self-signed certificate and imported it using the keytool. When I use my client to connect to my JAX-RPC web service, I get the following error: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: No trusted certificate found.
    It seems that no trusted certificate is found... on the client side?! How do I specify the client certificate at the client side? I created a client certificate and added it to the keystore in the application server...
    If somebody should have an example of User Name- and Password-Based Mutual Authentication, I'd really apreciate it.
    Thanks, d3m0.

    Hi,
    I've almost the same problem.In an application based on Java Web Start, i try to attack a web service through HTTPS. Before the call of the web services, the client have discussed with the server through HTTPS, so the user have already accept the certificate (i use self-signed certificate too), i get the same exception.
    At the begining i've used classes from axis. I've found that axis doesn't want to support non trusted certificate. Some workaround were that the client access the private key of the server ... not really secure. So i've tried to use the JAX-RPC classes, always the exception.
    For the moment , we don't want to use trusted certificate and don't want to install on each user workstation the server certificate. I continue to investigate, if someone have some solution ? What i don't understand is why i've this exception altough i'm in a secure environment (JWS + user accepts the untrusted certificate).
    Sorry, i've never work on User Name- and Password-Based Mutual Authentication, but i think your exception come because of self-signed certificate.
    Regard,
    Pierre.

  • ALOM account passwords stored & encrypted?

    Hello Folks
    Does anyone know for certain ...
    a) Where the user passwords are stored / persisted in the Sun ALOM environment? I assume within NVRAM space of the ALOM firmware....
    b) are these passwords indeed encrypted with what algorithm?
    Are these facts documented? I could not find detailed answers in the Administration Guide.
    Thanks & Cheers, Roger

    Yes. Open the datastore and click on "Display Language". The ftp password is there but encrypted. Same thing when exporting it to an ATL etc.

  • Apparently I have MULTIPLE Apple ID's, many linked to very old computers/emails that I no longer use and I have no clue what they are nor what the passwords could possibly be. I just want to be able to listen to music THAT I OWN!

    I am trying to play music on my iTunes that I had burned from either CD's that I had bought & own (in order to preserve the CD from damage and it is all only for my personal use) or purchased through iTunes. Much, but not all of this was done on an old computer, and on old e-mails that no longer exist, and for that matter I have no clue what the passwords could possibly be! The computer that I use now is at least 10 years old, so how am I supposed to remember passwords from that long ago? I am constantly being told to reset my password, but that apparently just seems to compound the issue. One account will not even accept my birthday and my security question which I know with 100% certainty are correct. I JUST WANT ACCESS TO MUSIC I OWN OR HAVE PURCHASED over the past 20+ years, and I don't care what computer I did it on or what e-mail address I used, and forget about trying to recall my password! Apple makes it so difficult to do passwords it's ridiculous! I would need a book to write down every password that I have tried, and apparently not succeeded in using! add to my frustration is that my son put literally TONS of his music onto my computer and used his various Apple ID's and passwords, and it's just a bumble cluck of a mess. AGAIN, I only want access to MY MUSIC!

    You're supposed to remember them or make note of them because they are key to a resource in which you have invested financially, just like keeping records for bank accounts you have or keys to your car.  It is just that people haven't woken up to the importance of having a digital legacy too.
    Here are resources for forgotten passwords:
    https://iforgot.apple.com/
    http://www.apple.com/support/appleid/contact/
    Contact Apple for help with Apple ID account security - http://support.apple.com/en-us/HT5699 "This article provides country-specific Apple Support contact information for customers seeking help with their Apple ID password or other security-related issues."

  • I am trying to set up a co-worker's email on her iPhone and I don't know what her password for Thunderbird is and neither does she. Can I get the password?

    I am trying to set up a co-worker's email on her iPhone and I don't know what her password for Thunderbird is and neither does she. Can I get the password somehow, or what do you recommend?

    There is no password to Thunderbird. The password you need is to the email account. Contact the email provider for password reset.

  • I just updated my ipod 4g to ios 5.1 and i cant download apps a message pops up saying to type in password for caldav something something the thing is that i have no idea what my password is i never made an account for that so please help

    i just updated my ipod 4g to ios 5.1 and i cant download apps a message pops up saying to type in password for caldav something something the thing is that i have no idea what my password is i never made an account for that so please help

    Go to iTunea>Preferences>Devices and see if there is a backupright at the time you did the update. Then try restoring from that backup. If the apps are in your iTunes library, any app data will be restored to the iPod.
    When restoring from an iOS 4 (or later) backup, if the device had a passcode set, iTunes will ask if you want to set a passcode (and remind you that you had protected your device with a passcode). iTunes will not ask you to set a passcode when restoring from iOS 3.x and prior backups.
    Therefore, remembe the passcode that you enter this time.
    It appears that if you restore from a backup, that backup is not subseqyently overwritten by the next backup.

  • HT2731 How do I remove an email address that is no longer vaild for the iTunes Store?  A really old email address keeps popping up on my iPhone, the email address is not valid and I have no idea what the password was.  It's been over two years.

    How do I remove an email address that is no longer vaild for the iTunes Store or my iPhone?  A really old email address keeps popping up on my iPhone, the email address is not valid and I have no idea what the password was.  It's been over two years.

    Hello tcnolen1,
    It sounds like you are trying to change the Apple ID logged into the iTunes & App Stores on your iPhone.  Use these steps:
    Changing your Apple ID account
    Tap Settings > iTunes & App Stores, then tap the Apple ID signed in.
    Sign out of the current Apple ID account and then sign in with another account or create a new Apple ID.
    You can find the full article here:
    iOS: Changing the signed-in iTunes Store Apple ID account
    http://support.apple.com/kb/ht1311
    Thank you for using Apple Support Communities.
    Best,
    Sheila M.

  • I have never set a firmware password on my macbook pro, but when I hold down option to boot from a different drive, I get a lock, and have no idea what the password is..?

    I have never set a firmware password on mymacbook pro, but when I hold down option to boot from a different drive, I geta lock, and have no idea what the password is, i am the first owner of my mac so its impossible that someone else has set the password, i have only noticed this becuae i made a bootcamp partition and installed windows onto the machine, after the installation... i shut down the comptuer and continued to use os x, days later i tried to boot into the boot camp partition again by holding down the option key on boot, but i got a window asking me for a firmware password that i have no idea of! please help me!
    will

    Hi macbookprowilliam, I have the SAME problem, that grey lock just appeared trolling me. I dunno the password and I wan't to sell this macbook! I need the password. Maybe it's a new malware! I don't even know how to set a firmware password and I am the only user on this computer too! I have a thread about that too: https://discussions.apple.com/thread/3926399?start=0&tstart=0
    So, did you fix it or got around it? Please reply! I am desperate.
    Thank you

  • I did not make a password to encrypt my iPhone backup. How do I resolve this issue of trying to restore from that backup ?

    I don't remember making a password to encrypt my iPhone backup. Does anyone know how I can uncheck the box. Or any other program I can use to backup my iPhone for free instead of iTunes ?
    I have checked in the password utility and it is not stored there.
    ThNKA

    Encrypting an iPhone backup can be required by a profile installed on your phone if using an Exchange account. Read here about how to recover the passcode if you don't know it:
    http://support.apple.com/kb/TS5162

  • How can I figure out what my password is and keep it unlocked?  Every time I do a system update, it requires the password and sends me into cyber trouble with the remember my keychain access, requiring it every time I log in.  A real hassle to be avoided

    How can I find out what my password on the computer is?  I had to change it due to my teenagers helping themselves, and now every time there is a system update, I have to have the password, which I cannot remember or find.  It then wants it every time I log in and pops up Key Chain Access as well.  Very annoying.  I do not have the disc to reload it and fear I would loose everything on my computer as there is also trouble with the back up system.  Too many issues and not enough solutions.  Many thanks in advance!

    I do not have the disc to reload
    Why not?  You need your system dvds to troubleshoot & to reset/change passwords in view of your current OS listed in your  profile. 
    You can get replacement System Install & Restore CD/DVDs from Apple's Customer Support - in the US, (800) 767-2775 - for a nominal S&H fee. You'll need to have the model and/or serial number of your Mac available.
    If you're not in the US, you may need to go through the regional Apple Store that serves your location to find the contact number. Here's a list of links to all of those - http://store.apple.com/Catalog/US/Images/intlstoreroutingpage.html Another resource:  International Support Phone #s.
    ===============
    I have to have the password, which I cannot remember or find.
    When selecting passwords, make sure it's one that you will NEVER forget AND no one else can figure out. 
    Old school--- > Print it out & keep in a safe place.  A place that ONLY you know about AND never forget.
    New school---> Get a password manager utility.  Highly recommend 1Password which is shareware.  Do a Google search for free password managers.

Maybe you are looking for

  • Scan to PDF files too large! - Why?? Solution for Windows - How about Mac? (HP-8630)

    Scanning a document to a PDF file of reasonable size has been addressed many times - it is always an issue! My wife is a realtor and frequently needs to scan multiple page documents. I found an actual solution last night: 27 page letter-size B&W docu

  • JDBC Sender Communication channel stop working

    Hi all, I'm facing with a strange problem: I have a db to db scenario (SQL server to Oracle) that has been tested and that was working properly. But when we started again our tests after some days, without doing any change, the flow didn't start anym

  • ISE Application backup error

    Getting this error while taking Cisco ISE backup. Has anyone seen this?What is the solution? Tried with tftp/sftp repositories. Thanks.

  • How to access ITS transaction from R/3

    Hi All, Is it possible to access ITS transaction like PZ02 in R/3? If yes, please tell me how to do the same? Thanks and warm regards, Aditya

  • Last Safari for OS 10.2.8

    What is version of last Safari for 10.2.8? After spending 1 hour on Apple site, I still can not find the last one for this os so I can download it.