How do I generate a SALT in Java for Salted-Hash?

by

Inspired from this post and that post, I use this code to generate and verify hashed salted passwords. It only uses JDK provided classes, no external dependency.

The process is:

  • you create a salt with getNextSalt
  • you ask the user his password and use the hash method to generate a salted and hashed password. The method returns a byte[] which you can save as is in a database with the salt
  • to authenticate a user, you ask his password, retrieve the salt and hashed password from the database and use the isExpectedPassword method to check that the details match
/**
 * A utility class to hash passwords and check passwords vs hashed values. It uses a combination of hashing and unique
 * salt. The algorithm used is PBKDF2WithHmacSHA1 which, although not the best for hashing password (vs. bcrypt) is
 * still considered robust and <a href="https://security.stackexchange.com/a/6415/12614"> recommended by NIST </a>.
 * The hashed value has 256 bits.
 */
public class Passwords {

  private static final Random RANDOM = new SecureRandom();
  private static final int ITERATIONS = 10000;
  private static final int KEY_LENGTH = 256;

  /**
   * static utility class
   */
  private Passwords() { }

  /**
   * Returns a random salt to be used to hash a password.
   *
   * @return a 16 bytes random salt
   */
  public static byte[] getNextSalt() {
    byte[] salt = new byte[16];
    RANDOM.nextBytes(salt);
    return salt;
  }

  /**
   * Returns a salted and hashed password using the provided hash.<br>
   * Note - side effect: the password is destroyed (the char[] is filled with zeros)
   *
   * @param password the password to be hashed
   * @param salt     a 16 bytes salt, ideally obtained with the getNextSalt method
   *
   * @return the hashed password with a pinch of salt
   */
  public static byte[] hash(char[] password, byte[] salt) {
    PBEKeySpec spec = new PBEKeySpec(password, salt, ITERATIONS, KEY_LENGTH);
    Arrays.fill(password, Character.MIN_VALUE);
    try {
      SecretKeyFactory skf = SecretKeyFactory.getInstance("PBKDF2WithHmacSHA1");
      return skf.generateSecret(spec).getEncoded();
    } catch (NoSuchAlgorithmException | InvalidKeySpecException e) {
      throw new AssertionError("Error while hashing a password: " + e.getMessage(), e);
    } finally {
      spec.clearPassword();
    }
  }

  /**
   * Returns true if the given password and salt match the hashed value, false otherwise.<br>
   * Note - side effect: the password is destroyed (the char[] is filled with zeros)
   *
   * @param password     the password to check
   * @param salt         the salt used to hash the password
   * @param expectedHash the expected hashed value of the password
   *
   * @return true if the given password and salt match the hashed value, false otherwise
   */
  public static boolean isExpectedPassword(char[] password, byte[] salt, byte[] expectedHash) {
    byte[] pwdHash = hash(password, salt);
    Arrays.fill(password, Character.MIN_VALUE);
    if (pwdHash.length != expectedHash.length) return false;
    for (int i = 0; i < pwdHash.length; i++) {
      if (pwdHash[i] != expectedHash[i]) return false;
    }
    return true;
  }

  /**
   * Generates a random password of a given length, using letters and digits.
   *
   * @param length the length of the password
   *
   * @return a random password
   */
  public static String generateRandomPassword(int length) {
    StringBuilder sb = new StringBuilder(length);
    for (int i = 0; i < length; i++) {
      int c = RANDOM.nextInt(62);
      if (c <= 9) {
        sb.append(String.valueOf(c));
      } else if (c < 36) {
        sb.append((char) ('a' + c - 10));
      } else {
        sb.append((char) ('A' + c - 36));
      }
    }
    return sb.toString();
  }
}

More Related Contents:

  1. How to convert fuzzy hash string to a file? [closed]
  2. Encrypt Password in Configuration Files? [closed]
  3. Password hashing, salt and storage of hashed values
  4. Handling Java crypto exceptions
  5. Do I need to store the salt with bcrypt?
  6. convert openSSH rsa key to javax.crypto.Cipher compatible format
  7. Simplest way to encrypt a text file in java
  8. java.security.NoSuchAlgorithmException:Cannot find any provider supporting AES/ECB/PKCS7PADDING
  9. How to hash a password with SHA-512 in Java?
  10. How are the IV and authentication tag handled for “AES/GCM/NoPadding”?
  11. PreparedStatement IN clause alternatives?
  12. Salt Generation and open source software
  13. How to decrypt a SHA-256 encrypted string?
  14. Recommendations on a free library to be used for zipping files [closed]
  15. Secure HTTP Post in Android
  16. Converting Secret Key into a String and Vice Versa
  17. Why does my AES encryption throws an InvalidKeyException?
  18. What is the security risk of object reflection?
  19. Convert a String to a byte array and then back to the original String
  20. How to encrypt and decrypt String with my passphrase in Java (Pc not mobile platform)? [duplicate]
  21. Size of data after AES/CBC and AES/ECB encryption
  22. How to restrict developers to use reflection to access private methods and constructors in Java?
  23. How to disable Java security manager?
  24. CryptoJS AES encryption and Java AES decryption
  25. How can I ensure the destruction of a String object in Java?
  26. New java.security.AccessControlException in Java 8
  27. Java AES 128 encrypting differently to openssl
  28. How to obtain the location of cacerts of the default java installation?
  29. AES/CBC/PKCS5Padding vs AES/CBC/PKCS7Padding with 256 key size performance java
  30. What is the best practice for securely storing passwords in Java

Leave a Comment