Package com.nimbusds.jose.crypto.impl
Class PBKDF2
- java.lang.Object
-
- com.nimbusds.jose.crypto.impl.PBKDF2
-
-
Field Summary
Fields Modifier and Type Field Description static intMIN_SALT_LENGTHThe minimum salt length (8 bytes).
-
Method Summary
All Methods Static Methods Concrete Methods Modifier and Type Method Description static SecretKeyderiveKey(byte[] password, byte[] formattedSalt, int iterationCount, PRFParams prfParams)Derives a PBKDF2 key from the specified password and parameters.static byte[]formatSalt(JWEAlgorithm alg, byte[] salt)Formats the specified cryptographic salt for use in PBKDF2.
-
-
-
Field Detail
-
MIN_SALT_LENGTH
public static final int MIN_SALT_LENGTH
The minimum salt length (8 bytes).- See Also:
- Constant Field Values
-
-
Method Detail
-
formatSalt
public static byte[] formatSalt(JWEAlgorithm alg, byte[] salt) throws JOSEException
Formats the specified cryptographic salt for use in PBKDF2.UTF8(JWE-alg) || 0x00 || Salt Input
- Parameters:
alg- The JWE algorithm. Must not benull.salt- The cryptographic salt. Must be at least 8 bytes long.- Returns:
- The formatted salt for use in PBKDF2.
- Throws:
JOSEException- If formatting failed.
-
deriveKey
public static SecretKey deriveKey(byte[] password, byte[] formattedSalt, int iterationCount, PRFParams prfParams) throws JOSEException
Derives a PBKDF2 key from the specified password and parameters.- Parameters:
password- The password. Must not benull.formattedSalt- The formatted cryptographic salt. Must not benull.iterationCount- The iteration count. Must be a positive integer.prfParams- The Pseudo-Random Function (PRF) parameters. Must not benull.- Returns:
- The derived secret key (with "AES" algorithm).
- Throws:
JOSEException- If the key derivation failed.
-
-