subversion-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Apache subversion Wiki <comm...@subversion.apache.org>
Subject [Subversion Wiki] Update of "MasterPassphrase" by CMichaelPilato
Date Tue, 27 Mar 2012 18:29:04 GMT
Dear Wiki user,

You have subscribed to a wiki page or wiki category on "Subversion Wiki" for change notification.

The "MasterPassphrase" page has been changed by CMichaelPilato:
http://wiki.apache.org/subversion/MasterPassphrase?action=diff&rev1=20&rev2=21

  === High-level notions ===
  At a minimum, we'll need:
  
-  * Access to a library for doing AES-256 encryption/decryption in CBC mode (see below),
and a PBKDF2 library.  APRUtil 1.4 should provide the required crypto functionality, with
APR 1.5 offering the cryptographic random data generation functionality.
+  * Access to a library for doing AES-256 encryption/decryption in CBC mode (see below),
and a PBKDF2 library.  APR/APRUtil 1.4 should provide the required crypto algorithm and random
data generation functionality.
   * A mechanism for telling Subversion to use a master passphrase.  Probably a runtime configuration
variable (`use-master-passphrase`, e.g.).
   * A way to know how to find the master passphrase in existing keyring caches.  Probably
a static string ("Subversion Master Password") or somesuch.
   * A means for verifying that a user- or keystore-provided passphrase is the correct one,
such as a self-check against a known string. We might want two strings here, actually: one
stored in the authn cache files themselves (to verify that the passphrase was the one used
for that set of credentials), and one stored in a provider- and realmstring-independent location
(to confirm the current master passphrase).  The former of those is probably only necessary
if the decryption algorithm is able to return valid-looking-yet-wrong results.  If, however,
the decryption algorithm can detect the attempted use of the wrong secret, we only need the
single this-confirms-the-current-master-password known-text string.

Mime
View raw message