PBKDF2 Decryption
Hi all
Is there anyway to decrypt the PBKDF2 encrypted data in a table?
Thanks,
Syed M
Product version: Caché 2017.1
$ZV: Cache for Windows (x86-64) 2017.2.2 (Build 867_4_20174U)
Hi all
Is there anyway to decrypt the PBKDF2 encrypted data in a table?
Thanks,
Syed M
The sense of PBKDF2 encryption is, to prevent a decryption or, at least, to make a decryption as difficult as possible! Why do you want to decrypt an encrypted password? Why just not reset it?
Yes, We want to decrypt an encrypted password for validating the user in the application.
How can I reset it?
First, resetting a password means, the user gets a new password, in your use case, this is not an option.
Second, if you want (for whatever reason) to validate the user in some stage of the application, then you must calculate the PBKDF2 from useres input (the password) and from (the stored) salt. The hash you get should be equal to the hash, storted in the database. PBKDF2 is a one way salted password hash.
By the way, you have to care about not to transfer the users (clear text) input to your computation over an unsecure way!
PBKDF2 is not a method of encryption, it's a method of hashing - e.g., it's one-way.
Depending on what you're looking to accomplish (e.g., validating users against some external system), delegated authentication (https://docs.intersystems.com/irislatest/csp/docbook/DocBook.UI.Page.cls...) with a ZAUTHETNICATE routine (see https://docs.intersystems.com/irislatest/csp/docbook/DocBook.UI.Page.cls...) might help.