google-nomulus

mirror of https://github.com/google/nomulus.git synced 2025-07-27 04:58:37 +02:00

History

Lai Jiang cd23fea698 Switch to a stronger algorithm for password hashing (#2191 ) We have been using SHA256 to hash passwords (for both EPP and registry lock), which is now considered too weak. This PR switches to using Scrypt, a memory-hard slow hash function, with recommended parameters per go/crypto-password-hash. To ease the transition, when a password is being verified, both Scrypt and SHA256 are tried. If SHA256 verification is successful, we re-hash the verified password with Scrypt and replace the stored SHA256 hash with the new one. This way, as long as a user uses the password once before the transition period ends (when Scrypt becomes the only valid algorithm), there would be no need for manual intervention from them. We will send out notifications to users to remind them of the transition and urge them to use the password (which should not be a problem with EPP, but less so with the registry lock). After the transition, out-of-band reset for EPP password, or remove-and-add on the console for registry lock password, would be required for the hashes that have not been re-saved. Note that the re-save logic is not present for console user's registry lock password, as there is no production data for console users yet. Only legacy GAE user's password requires re-save.	2023-11-03 17:29:01 -04:00
..
main/java/google/registry/util	Switch to a stronger algorithm for password hashing (#2191 )	2023-11-03 17:29:01 -04:00
test	Switch to a stronger algorithm for password hashing (#2191 )	2023-11-03 17:29:01 -04:00

Switch to a stronger algorithm for password hashing (#2191 )

We have been using SHA256 to hash passwords (for both EPP and registry lock),
which is now considered too weak.

This PR switches to using Scrypt, a memory-hard slow hash function, with
recommended parameters per go/crypto-password-hash.

To ease the transition, when a password is being verified, both Scrypt
and SHA256 are tried. If SHA256 verification is successful, we re-hash
the verified password with Scrypt and replace the stored SHA256 hash
with the new one. This way, as long as a user uses the password once
before the transition period ends (when Scrypt becomes the only valid
algorithm), there would be no need for manual intervention from them.

We will send out notifications to users to remind them of the transition
and urge them to use the password (which should not be a problem with
EPP, but less so with the registry lock). After the transition,
out-of-band reset for EPP password, or remove-and-add on the console for
registry lock password, would be required for the hashes that have not
been re-saved.

Note that the re-save logic is not present for console user's registry
lock password, as there is no production data for console users yet.
Only legacy GAE user's password requires re-save.

2023-11-03 17:29:01 -04:00

main/java/google/registry/util

Switch to a stronger algorithm for password hashing (#2191 )

2023-11-03 17:29:01 -04:00

test

Switch to a stronger algorithm for password hashing (#2191 )

2023-11-03 17:29:01 -04:00