6:[["$","$Le",null,{}],["$","div",null,{"className":"min-h-screen bg-gray-100 p-6","children":[["$","$Lf",null,{}],["$","script",null,{"type":"application/ld+json","dangerouslySetInnerHTML":{"__html":"{\"@context\":\"https://schema.org\",\"@type\":\"QAPage\",\"mainEntity\":{\"@type\":\"Question\",\"name\":\"Problems in an unconventional encryption scheme?\",\"text\":\"

My program includes a feature where users could encrypt certain data using a password. As not all passwords will be a proper length, are there any insecurities in fixing this by hashing the password (with a good algorithm) to generate a fixed-length key which will then be fed into AES?

\\n\\n

EDIT: Never mind, see http://en.wikipedia.org/wiki/Key_derivation_function

\\n\",\"author\":{\"@type\":\"Person\",\"name\":\"tloen\"},\"upvoteCount\":0,\"answerCount\":1,\"acceptedAnswer\":null}}"}}],["$","div",null,{"className":"bg-white shadow-md rounded-lg p-6 mb-6 relative","children":[["$","div",null,{"className":"absolute top-4 right-4 flex flex-wrap space-x-2","children":[["$","span","encryption",{"className":"bg-blue-600 text-white text-sm px-3 py-1 rounded-full","children":["$","$L10",null,{"href":"/discussion/tag/encryption/1","children":"encryption"}]}],["$","span","hash",{"className":"bg-blue-600 text-white text-sm px-3 py-1 rounded-full","children":["$","$L10",null,{"href":"/discussion/tag/hash/1","children":"hash"}]}],["$","span","aes",{"className":"bg-blue-600 text-white text-sm px-3 py-1 rounded-full","children":["$","$L10",null,{"href":"/discussion/tag/aes/1","children":"aes"}]}]]}],["$","div",null,{"className":"flex items-center mb-4","children":[["$","img",null,{"src":"https://www.gravatar.com/avatar/682b3b764000d3667f700378b6e4d80e?s=256&d=identicon&r=PG","alt":"tloen","className":"w-16 h-16 rounded-full border"}],["$","div",null,{"className":"ml-4","children":[["$","a",null,{"href":"https://stackoverflow.com/users/1320614/tloen","target":"_blank","rel":"noopener noreferrer","className":"text-lg font-semibold text-blue-600 hover:underline","children":"tloen"}],["$","p",null,{"className":"text-sm text-gray-500","children":["Reputation: ",13]}]]}]]}],["$","h1",null,{"className":"text-2xl font-bold text-gray-800 mb-4","children":"Problems in an unconventional encryption scheme?"}],["$","p",null,{"className":"text-gray-700 mt-4","dangerouslySetInnerHTML":{"__html":"

\n\n

EDIT: Never mind, see http://en.wikipedia.org/wiki/Key_derivation_function

\n"}}],["$","div",null,{"className":"text-gray-600 text-sm mt-4","children":[["$","p",null,{"children":["Upvotes: ",0]}],["$","p",null,{"children":["Views: ",46]}]]}]]}],["$","div",null,{"className":"container mx-auto","children":[["$","h2",null,{"className":"text-2xl font-semibold text-gray-800 mb-6","children":["Answers (",1,")"]}],[["$","div","10200966",{"className":"bg-white shadow-md rounded-lg p-6 mb-6","children":[["$","div",null,{"className":"flex items-center mb-4","children":[["$","img",null,{"src":"https://www.gravatar.com/avatar/76ca4397a6ec4aa8fcf85dc53e1cbab6?s=256&d=identicon&r=PG","alt":"Alex Gitelman","className":"w-12 h-12 rounded-full border"}],["$","div",null,{"className":"ml-4","children":[["$","a",null,{"href":"https://stackoverflow.com/users/719363/alex-gitelman","target":"_blank","rel":"noopener noreferrer","className":"text-lg font-semibold text-blue-600 hover:underline","children":"Alex Gitelman"}],["$","p",null,{"className":"text-sm text-gray-500","children":["Reputation: ",24722]}]]}]]}],["$","p",null,{"className":"text-gray-700 mb-4","dangerouslySetInnerHTML":{"__html":"

If password is easy to break because it is short - hashing it will not help as all what will be needed is to apply the same hash function during brute force attack. And it may not be possible to make hash function completely secret as it must be exposed at some point to hash the password.

\n"}}],["$","div",null,{"className":"text-gray-600 text-sm","children":["$","p",null,{"children":["Upvotes: ",2]}]}]]}]]]}],["$","div",null,{"className":"bg-white shadow-md rounded-lg p-6 mt-6","children":[["$","h2",null,{"className":"text-2xl font-semibold text-gray-800 mb-4","children":"Related Questions"}],["$","ul",null,{"className":"list-disc list-inside","children":[["$","li","47017606",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/47017606","className":"text-blue-600 hover:underline","children":"Is hashing really a irreversible process?"}]}],["$","li","58938951",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/58938951","className":"text-blue-600 hover:underline","children":"Why can't AES be used as a part of a hashing algorithm?"}]}],["$","li","47758608",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/47758608","className":"text-blue-600 hover:underline","children":"AES based non-cryptographic hash algorithm"}]}],["$","li","50451070",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/50451070","className":"text-blue-600 hover:underline","children":"Password Hash Approach"}]}],["$","li","48929048",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/48929048","className":"text-blue-600 hover:underline","children":"Is not a good idea to use hash values directly for encryption?"}]}],["$","li","12365554",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/12365554","className":"text-blue-600 hover:underline","children":"Is my method of encrypting encryption keys secure?"}]}],["$","li","7940348",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/7940348","className":"text-blue-600 hover:underline","children":"Hash and encryption in combination: Preserve security"}]}],["$","li","6178077",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/6178077","className":"text-blue-600 hover:underline","children":"Security implications of storing the password hash along an encrypted AES key"}]}],["$","li","4456460",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/4456460","className":"text-blue-600 hover:underline","children":"How strong is this hashing technique?"}]}],["$","li","1137830",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/1137830","className":"text-blue-600 hover:underline","children":"Hash Collision in fairly simple encrypt/decrypt code"}]}]]}]]}]]}],["$","$L11",null,{}],["$","$L12",null,{}],["$","$L13",null,{}],["$","$L14",null,{}],["$","$L15",null,{}]]

Problems in an unconventional encryption scheme?

Answers (1)

Related Questions