http://bcrypt.codeplex.com/bcrypt Wiki Rss Descriptionhttp://bcrypt.codeplex.com/wikipage?version=4<div class="wikidoc"> <p><strong>Project Description</strong><br> A .Net port of jBCrypt implemented in C#. It uses a variant of the Blowfish encryption algorithm&rsquo;s keying schedule, and introduces a work factor, which allows you to determine how expensive the hash function will be, allowing the algorithm to be &quot;future-proof&quot;.<br> <br> <strong>Details</strong><br> This is, for all intents and purposes, a direct port of <a href="http://www.mindrot.org/projects/jBCrypt/" target="_blank"> jBCrypt</a> written by Damien Miller.&nbsp;&nbsp;The main differences are the addition of some convenience methods and some mild refactoring. &nbsp;The easiest way to verify BCrypt.Net's parity with jBCrypt is to compare the unit tests.</p> <p>For an overview of why BCrypt is important see <a href="http://codahale.com/how-to-safely-store-a-password/" target="_blank"> How to Safely Store a Password</a>. &nbsp;In general it's a hashing algorithm that can be adjusted over time to require more CPU power to generate the hashes. &nbsp;This, in essence, provides some protection against <a title="Moore's Law - Wikipedia" href="http://en.wikipedia.org/wiki/Moore's_law" target="_blank"> Moore's Law</a>. &nbsp;That is, as computers get faster, this algorithm can be adjusted to require more CPU power. &nbsp;The more CPU power that's required to hash a given password, the more time a &quot;hacker&quot; must invest, per password. &nbsp;Since the &quot;work factor&quot; is embedded in the resultant hash, the hashes generated by this algorithm are forward/backward-compatible.</p> <p><strong>Why BCrypt</strong></p> <p>From <a href="http://codahale.com/how-to-safely-store-a-password/" target="_blank"> How to Safely Store a Password</a>:</p> <p style="padding-left:30px">[..] It uses a variant of the Blowfish encryption algorithm&rsquo;s keying schedule, and introduces a&nbsp;<em>work factor</em>, which allows you to determine how expensive the hash function will be. Because of this,&nbsp;<code>bcrypt</code>&nbsp;can keep up with Moore&rsquo;s law. As computers get faster you can increase the work factor and the hash will get slower.</p> <p>From <a href="http://en.wikipedia.org/wiki/Crypt_(Unix)#Blowfish-based_scheme" target="_blank"> Wikipedia</a>:</p> <p style="padding-left:30px">Niels Provos&nbsp;and&nbsp;David Mazieres&nbsp;designed a crypt() scheme called&nbsp;<a title="Bcrypt" href="http://en.wikipedia.org/wiki/Bcrypt" target="_blank">bcrypt</a>&nbsp;based on&nbsp;<a title="Blowfish (cipher)" href="http://en.wikipedia.org/wiki/Blowfish_(cipher)" target="_blank">Blowfish</a>, and presented it at&nbsp;<a title="USENIX" href="http://en.wikipedia.org/wiki/USENIX" target="_blank">USENIX</a>&nbsp;in 1999.&nbsp;The printable form of these hashes starts with&nbsp;<strong>$2$</strong>&nbsp;or&nbsp;<strong>$2a$</strong>, depending on which variant of the algorithm is used.</p> <p style="padding-left:30px">Blowfish is notable among block ciphers for its expensive key setup phase. It starts off with subkeys in a standard state, then uses this state to perform a block encryption using part of the key, and uses the result of that encryption (really, a hashing) to replace some of the subkeys. Then it uses this modified state to encrypt another part of the key, and uses the result to replace more of the subkeys. It proceeds in this fashion, using a progressively modified state to hash the key and replace bits of state, until all subkeys have been set.</p> <p style="padding-left:30px">Provos and Mazieres took advantage of this, and actually took it further. They developed a new key setup algorithm for Blowfish, dubbing the resulting cipher &quot;Eksblowfish&quot; (&quot;expensive key schedule Blowfish&quot;). The key setup begins with a modified form of the standard Blowfish key setup, in which both the salt and password are used to set all subkeys. Then there is a configurable number of rounds in which the standard Blowfish keying algorithm is applied, using alternately the salt and the password as the key, each round starting with the subkey state from the previous round. This is not cryptographically significantly stronger than the standard Blowfish key schedule; it's just very slow.</p> <p style="padding-left:30px">The number of rounds of keying is a power of two, which is an input to the algorithm. The number is encoded in the textual hash.</p> </div><div class="ClearBoth"></div>rdez6173Mon, 17 Jan 2011 14:38:06 GMTUpdated Wiki: Home 20110117023806Phttp://bcrypt.codeplex.com/documentation?version=1<div class="wikidoc">Documentation is available in the <a href="http://bcrypt.codeplex.com/releases/view/57687">CurrentRelease</a></div><div class="ClearBoth"></div>rdez6173Sun, 19 Dec 2010 13:54:18 GMTUpdated Wiki: Documentation 20101219015418Phttp://bcrypt.codeplex.com/wikipage?version=3<div class="wikidoc"> <p><strong>Project Description</strong><br> A .Net port of jBCrypt implemented in C#. It uses a variant of the Blowfish encryption algorithm&rsquo;s keying schedule, and introduces a work factor, which allows you to determine how expensive the hash function will be, allowing the algorithm to be &quot;future-proof&quot;.<br> <br> <strong>Details</strong><br> This is a direct port of <a href="http://www.mindrot.org/projects/jBCrypt/" target="_blank"> jBCrypt</a> written by Damien Miller. The easiest way to verify BCrypt.Net's parity with jBCrypt is to compare the unit tests.<br> <br> For an overview of why BCrypt is important see <a href="http://codahale.com/how-to-safely-store-a-password/" target="_blank"> How to Safely Store a Password</a><br> <br> <strong>Why BCrypt</strong></p> <p>From <a href="http://codahale.com/how-to-safely-store-a-password/" target="_blank"> How to Safely Store a Password</a>:</p> <p style="padding-left:30px">[..] It uses a variant of the Blowfish encryption algorithm&rsquo;s keying schedule, and introduces a&nbsp;<em>work factor</em>, which allows you to determine how expensive the hash function will be. Because of this,&nbsp;<code>bcrypt</code>&nbsp;can keep up with Moore&rsquo;s law. As computers get faster you can increase the work factor and the hash will get slower.</p> <p>From <a href="http://en.wikipedia.org/wiki/Crypt_(Unix)#Blowfish-based_scheme" target="_blank"> Wikipedia</a>:</p> <p style="padding-left:30px">Niels Provos&nbsp;and&nbsp;David Mazieres&nbsp;designed a crypt() scheme called&nbsp;<a title="Bcrypt" href="http://en.wikipedia.org/wiki/Bcrypt" target="_blank">bcrypt</a>&nbsp;based on&nbsp;<a title="Blowfish (cipher)" href="http://en.wikipedia.org/wiki/Blowfish_(cipher)" target="_blank">Blowfish</a>, and presented it at&nbsp;<a title="USENIX" href="http://en.wikipedia.org/wiki/USENIX" target="_blank">USENIX</a>&nbsp;in 1999.&nbsp;The printable form of these hashes starts with&nbsp;<strong>$2$</strong>&nbsp;or&nbsp;<strong>$2a$</strong>, depending on which variant of the algorithm is used.</p> <p style="padding-left:30px">Blowfish is notable among block ciphers for its expensive key setup phase. It starts off with subkeys in a standard state, then uses this state to perform a block encryption using part of the key, and uses the result of that encryption (really, a hashing) to replace some of the subkeys. Then it uses this modified state to encrypt another part of the key, and uses the result to replace more of the subkeys. It proceeds in this fashion, using a progressively modified state to hash the key and replace bits of state, until all subkeys have been set.</p> <p style="padding-left:30px">Provos and Mazieres took advantage of this, and actually took it further. They developed a new key setup algorithm for Blowfish, dubbing the resulting cipher &quot;Eksblowfish&quot; (&quot;expensive key schedule Blowfish&quot;). The key setup begins with a modified form of the standard Blowfish key setup, in which both the salt and password are used to set all subkeys. Then there is a configurable number of rounds in which the standard Blowfish keying algorithm is applied, using alternately the salt and the password as the key, each round starting with the subkey state from the previous round. This is not cryptographically significantly stronger than the standard Blowfish key schedule; it's just very slow.</p> <p style="padding-left:30px">The number of rounds of keying is a power of two, which is an input to the algorithm. The number is encoded in the textual hash.</p> </div><div class="ClearBoth"></div>rdez6173Wed, 15 Dec 2010 22:58:53 GMTUpdated Wiki: Home 20101215105853P