tag:old.nabble.com,2006:forum-21332Nabble - Jasypt2009-12-10T17:56:05Z<a href="http://www.jasypt.org/" target="_top" rel="nofollow">Jasypt</a> is a java library which allows the developer to add basic encryption capabilities to his/her projects with minimum effort, and without the need of having deep knowledge on how cryptography works.tag:old.nabble.com,2006:post-26737580Re: can't query encrypted hibernate field2009-12-10T17:56:05Z2009-12-10T17:56:05Zszygy+------------------------+
<br> Jasypt Users List
<br> <a href="http://www.jasypt.org" target="_top" rel="nofollow">http://www.jasypt.org</a>
<br>+------------------------+
<br>Allan or anybody else,
<br><br>I actually ran into the problem that you describe below just now.
<br>However, there is one twist - I was hoping to get around the problem
<br>by using a fixed salt instead of a random salt. This is still a
<br>security improvement over storing it in plaintext (especially for my
<br>particular needs), yet, I hoped, would still allow me to use the field
<br>in a WHERE clause.
<br><br>I'm working with Hibernate, so I'm declaring the encryption in my
<br>Hibernate mapping file, and using a registered encryptor with a fixed
<br>salt that I set up in my startup listener.
<br><br>The problem I've come across though is that when I try to construct a
<br>HQL query like:
<br>......createQuery("from MyObject where encryptedField = :VAL");
<br>I can't set VAL to be equal to the plaintext that I'm searching for...
<br>because it will keep the plaintext and search for matches on the
<br>encrypted text, which of course it won't find.
<br><br>Is there any easy way to configure the mapping to enable searches like
<br>this (either by decrypting encryptedField first, or encrypting :VAL
<br>first every time)? Or do I need to programmatically encrypt the
<br>plaintext value every time, before plugging it into HQL queries like
<br>this?
<br><br>Thanks for any pointers!
<br>Stephen
<br><br><br><br><br>On Mon, Nov 30, 2009 at 5:47 AM, Allan Lang <<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26737580&i=0" target="_top" rel="nofollow">lang.allan@...</a>> wrote:
<div class='shrinkable-quote'><br>> +------------------------+
<br>> Jasypt Users List
<br>> <a href="http://www.jasypt.org" target="_top" rel="nofollow">http://www.jasypt.org</a><br>> +------------------------+
<br>>
<br>> As per <a href="http://www.jasypt.org/hibernate3.html" target="_top" rel="nofollow">http://www.jasypt.org/hibernate3.html</a> note that you cannot search on
<br>> an encrypted field:
<br>>
<br>> "...encryption sets a limitation on your Hibernate usage: security standards
<br>> establish that two different encryption operations on the same data should
<br>> not return the same value (due to the use of a random salt). Because of
<br>> this, none of the fields that are set to be encrypted when persisted can be
<br>> a part of a WHERE clause in your search queries for the entity they belong
<br>> to."
<br>>
<br>> You probably need to drop the password from the WHERE clause, and instead
<br>> apply checkPassword() of BasicPasswordEncryptor (or similar) to the result
<br>> row(s?) which are returned.
<br>>
<br>> Hope this helps,
<br>> Allan
<br>>
<br>>
<br>> offbyone wrote:
<br>>>
<br>>> I am using spring 2.5 + hibernate 3. I am trying to encrypt my user
<br>>> password field. I set up an encryptor in spring as such:
<br>>> <bean id="hibernateStringEncryptor"
<br>>>
<br>>> class="org.jasypt.hibernate.encryptor.HibernatePBEStringEncryptor">
<br>>> <property name="registeredName">
<br>>> <value>strongHibernateStringEncryptor</value>
<br>>> </property>
<br>>> <property name="algorithm">
<br>>> <value>PBEWithMD5AndTripleDES</value>
<br>>> </property>
<br>>> <property name="password">
<br>>> <value>mypassword</value>
<br>>> </property>
<br>>> </bean>
<br>>>
<br>>> In my user class mapping I have the following:
<br>>> <hibernate-mapping auto-import="true">
<br>>> <typedef name="encryptedString"
<br>>> class="org.jasypt.hibernate.type.EncryptedStringType">
<br>>> strongHibernateStringEncryptor
<br>>> </typedef>
<br>>> .
<br>>> <class name="User" table="USERS">
<br>>> <id access="field" column="id" name="id" type="int"
<br>>> unsaved-value="-1">
<br>>> <generator class="sequence">
<br>>> SEQ_USERS
<br>>> </generator>
<br>>> </id>
<br>>> <property column="USERNAME" name="username" not-null="true"
<br>>> type="string"/>
<br>>> <property column="PASSWORD" name="password" not-null="true"
<br>>> type="encryptedString"/>
<br>>>
<br>>>
<br>>> When I create a new user, the password is properly encrypted. I can also
<br>>> query users via load or through the object map and I tested that the
<br>>> password is being decrypted.
<br>>>
<br>>> ***However, I can not query a user using the password field:
<br>>>
<br>>> String query = "select user from User user where active=? and
<br>>> username=? and password=?";
<br>>> List results = getHibernateTemplate().find(query, new
<br>>> Object[]{true, userName, password});
<br>>>
<br>>> I get no results whenever I query using the encrypted field. What am I
<br>>> doing wrong?
<br>>> thanks
<br>>> -ryan
<br>>>
<br>>
<br>> --
<br>> View this message in context: <a href="http://old.nabble.com/can%27t-query-encrypted-hibernate-field-tp24099606s21332p26572616.html" target="_top" rel="nofollow">http://old.nabble.com/can%27t-query-encrypted-hibernate-field-tp24099606s21332p26572616.html</a><br>> Sent from the Jasypt - Users mailing list archive at Nabble.com.
<br>>
<br>>
<br>> ------------------------------------------------------------------------------
<br>> Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day
<br>> trial. Simplify your report design, integration and deployment - and focus on
<br>> what you do best, core application coding. Discover what's new with
<br>> Crystal Reports now. <a href="http://p.sf.net/sfu/bobj-july" target="_top" rel="nofollow">http://p.sf.net/sfu/bobj-july</a><br>> _______________________________________________
<br>> jasypt-users mailing list
<br>> <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26737580&i=1" target="_top" rel="nofollow">jasypt-users@...</a>
<br>> <a href="https://lists.sourceforge.net/lists/listinfo/jasypt-users" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/jasypt-users</a><br>>
</div><br>------------------------------------------------------------------------------
<br>Return on Information:
<br>Google Enterprise Search pays you back
<br>Get the facts.
<br><a href="http://p.sf.net/sfu/google-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/google-dev2dev</a><br>_______________________________________________
<br>jasypt-users mailing list
<br><a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26737580&i=2" target="_top" rel="nofollow">jasypt-users@...</a>
<br><a href="https://lists.sourceforge.net/lists/listinfo/jasypt-users" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/jasypt-users</a><br><p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-26622180Re: Spring Security 3.x / Patch2009-12-02T23:54:37Z2009-12-02T23:54:37Zdfernandez+------------------------+
<br> Jasypt Users List
<br> <a href="http://www.jasypt.org" target="_top" rel="nofollow">http://www.jasypt.org</a>
<br>+------------------------+
<br><br /><br>If everything goes well, that will be next week.<br><br>Regards,<br>Daniel.<br><br><br><div class="gmail_quote">On Thu, Dec 3, 2009 at 2:41 AM, SubaruWRC <span dir="ltr"><<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26622180&i=0" target="_top" rel="nofollow">ryan.lamothe@...</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"><div class="im">+------------------------+<br>
Jasypt Users List<br>
<a href="http://www.jasypt.org" target="_blank" rel="nofollow">http://www.jasypt.org</a><br>
+------------------------+<br>
<br>
</div>Do you have an expected release date?<br>
<br>
Thanks.<br>
<div class="im"><br>
<br>
dfernandez wrote:<br>
><br>
> +------------------------+<br>
> Jasypt Users List<br>
> <a href="http://www.jasypt.org" target="_blank" rel="nofollow">http://www.jasypt.org</a><br>
> +------------------------+<br>
><br>
</div><div><div></div><div class="h5">> Is anyone listening on this user forum to put out an updated release of<br>
>> JASYPT???<br>
>><br>
><br>
><br>
> Of course there is. Jasypt will include support for Spring Security 3.0 in<br>
> its next release. You can expect it to be published in a few weeks.<br>
><br>
> Regards,<br>
> Daniel.<br>
><br>
</div></div><div class="im">> ------------------------------------------------------------------------------<br>
> Let Crystal Reports handle the reporting - Free Crystal Reports 2008<br>
> 30-Day<br>
> trial. Simplify your report design, integration and deployment - and focus<br>
> on<br>
> what you do best, core application coding. Discover what's new with<br>
> Crystal Reports now. <a href="http://p.sf.net/sfu/bobj-july" target="_blank" rel="nofollow">http://p.sf.net/sfu/bobj-july</a><br>
> _______________________________________________<br>
> jasypt-users mailing list<br>
> <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26622180&i=1" target="_top" rel="nofollow">jasypt-users@...</a><br>
> <a href="https://lists.sourceforge.net/lists/listinfo/jasypt-users" target="_blank" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/jasypt-users</a><br>
><br>
><br>
<br>
</div>--<br>
View this message in context: <a href="http://old.nabble.com/Spring-Security-3.x---Patch-tp26314345s21332p26619721.html" target="_blank" rel="nofollow">http://old.nabble.com/Spring-Security-3.x---Patch-tp26314345s21332p26619721.html</a><br>
<div class="im">Sent from the Jasypt - Users mailing list archive at Nabble.com.<br>
<br>
<br>
------------------------------------------------------------------------------<br>
</div>Join us December 9, 2009 for the Red Hat Virtual Experience,<br>
a free event focused on virtualization and cloud computing.<br>
Attend in-depth sessions from your desk. Your couch. Anywhere.<br>
<a href="http://p.sf.net/sfu/redhat-sfdev2dev" target="_blank" rel="nofollow">http://p.sf.net/sfu/redhat-sfdev2dev</a><br>
<div><div></div><div class="h5">_______________________________________________<br>
jasypt-users mailing list<br>
<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26622180&i=2" target="_top" rel="nofollow">jasypt-users@...</a><br>
<a href="https://lists.sourceforge.net/lists/listinfo/jasypt-users" target="_blank" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/jasypt-users</a><br>
</div></div></blockquote></div><br>
<br />------------------------------------------------------------------------------
<br>Join us December 9, 2009 for the Red Hat Virtual Experience,
<br>a free event focused on virtualization and cloud computing.
<br>Attend in-depth sessions from your desk. Your couch. Anywhere.
<br><a href="http://p.sf.net/sfu/redhat-sfdev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/redhat-sfdev2dev</a><br />_______________________________________________
<br>jasypt-users mailing list
<br><a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26622180&i=3" target="_top" rel="nofollow">jasypt-users@...</a>
<br><a href="https://lists.sourceforge.net/lists/listinfo/jasypt-users" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/jasypt-users</a><br><p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-26619721Re: Spring Security 3.x / Patch2009-12-02T17:41:19Z2009-12-02T17:41:19ZSubaruWRCDo you have an expected release date?
<br><br>Thanks.
<br><br><blockquote class="quote light-black dark-border-color"><div class="quote light-border-color">
<div class="quote-author" style="font-weight: bold;">dfernandez wrote:</div>
<div class="quote-message shrinkable-quote">+------------------------+
<br> Jasypt Users List
<br> <a href="http://www.jasypt.org" target="_top" rel="nofollow">http://www.jasypt.org</a>
<br>+------------------------+
<br><br>Is anyone listening on this user forum to put out an updated release of
<br>> JASYPT???
<br>>
<br><br><br>Of course there is. Jasypt will include support for Spring Security 3.0 in
<br>its next release. You can expect it to be published in a few weeks.
<br><br>Regards,
<br>Daniel.
<br><br>------------------------------------------------------------------------------
<br>Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day
<br>trial. Simplify your report design, integration and deployment - and focus on
<br>what you do best, core application coding. Discover what's new with
<br>Crystal Reports now. <a href="http://p.sf.net/sfu/bobj-july" target="_top" rel="nofollow">http://p.sf.net/sfu/bobj-july</a><br>_______________________________________________
<br>jasypt-users mailing list
<br>jasypt-users@lists.sourceforge.net
<br><a href="https://lists.sourceforge.net/lists/listinfo/jasypt-users" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/jasypt-users</a></div>
</div></blockquote>
<p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-26600598HELP! Portability of text encrypted with BasicTextEncryptor2009-12-01T14:57:17Z2009-12-01T14:57:17Zbaton22+------------------------+
<br> Jasypt Users List
<br> <a href="http://www.jasypt.org" target="_top" rel="nofollow">http://www.jasypt.org</a>
<br>+------------------------+
<br><br /><table cellspacing="0" cellpadding="0" border="0"><tr><td valign="top" style="font: inherit;">Hi,<br>So I have a bunch of data that is encrypted using BasicTextEncryptor<br><br>The data being encrypted is nothing special and the data is nothing out of the ordinary. Basic names etc ascii text. No odd characters etc.<br><br>The passwords being used to encrypt the data are likewise, nothing special, no odd characters. <br><br>All of this data has been encrypted on BOXA(win 2003, jre 1.6). When I move the data to BOXB(linux, jre 1.6), the data fails to decrypt. With the EncryptionOperationNotPossibleException<br><br>Its frustrating because I am literally typing in a password like (straight into java code):<br><br>a0f4fhej34f which should decrypt a string that was outputted from BasicTextEncryptor that I am copy pasting in to the decrypt method and I get this exception.<br><br>This is a major issue as I have to move this data to this new box, but the
data seems to be bound to the machine that encrypted it???<br></td></tr></table><br />------------------------------------------------------------------------------
<br>Join us December 9, 2009 for the Red Hat Virtual Experience,
<br>a free event focused on virtualization and cloud computing.
<br>Attend in-depth sessions from your desk. Your couch. Anywhere.
<br><a href="http://p.sf.net/sfu/redhat-sfdev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/redhat-sfdev2dev</a><br />_______________________________________________
<br>jasypt-users mailing list
<br><a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26600598&i=0" target="_top" rel="nofollow">jasypt-users@...</a>
<br><a href="https://lists.sourceforge.net/lists/listinfo/jasypt-users" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/jasypt-users</a><br><p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-26596066How to use jasypt+spring+c3p02009-12-01T08:05:28Z2009-12-01T08:05:28Zred phoenix-2+------------------------+
<br> Jasypt Users List
<br> <a href="http://www.jasypt.org" target="_top" rel="nofollow">http://www.jasypt.org</a>
<br>+------------------------+
<br><br />I use spring+c3p0,I use jdbc.properties to configure database souce <br>jdbc.driverClassName=oracle.jdbc.OracleDriver <br>jdbc.url=jdbc:oracle:thin:@127.0.0.1:1521:test <br>jdbc.username=scott <br>jdbc.password=tiger <br><br>
Now I want to use jasypt+spring+c3p0,but I don't know how to configure it. How to do it? An example is better.<br><br>Thanks
<br />------------------------------------------------------------------------------
<br>Join us December 9, 2009 for the Red Hat Virtual Experience,
<br>a free event focused on virtualization and cloud computing.
<br>Attend in-depth sessions from your desk. Your couch. Anywhere.
<br><a href="http://p.sf.net/sfu/redhat-sfdev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/redhat-sfdev2dev</a><br />_______________________________________________
<br>jasypt-users mailing list
<br><a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26596066&i=0" target="_top" rel="nofollow">jasypt-users@...</a>
<br><a href="https://lists.sourceforge.net/lists/listinfo/jasypt-users" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/jasypt-users</a><br><p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-26596113Operation not possible (Bad input or parameters)2009-12-01T08:03:42Z2009-12-01T08:03:42Zred phoenix-2+------------------------+
<br> Jasypt Users List
<br> <a href="http://www.jasypt.org" target="_top" rel="nofollow">http://www.jasypt.org</a>
<br>+------------------------+
<br><br /><div id="nabble.msgtxt26593736" class="message-text">I use following command,like follows: <br>C:\jasypt-1.5\bin>encrypt input=test algorithm=PBEWithMD5AndTripleDES password=mypassword <br><br>but it raise following error: <br>
<br>----ENVIRONMENT----------------- <br><br>Runtime: Sun Microsystems Inc. Java HotSpot(TM) Client VM 11.0-b15 <br><br>----ARGUMENTS------------------- <br><br>algorithm: PBEWithMD5AndTripleDES <br>input: test <br>password: mypassword <br>
<br>----ERROR----------------------- <br><br>Operation not possible (Bad input or parameters) <br><br>My JDK is 1.6.0, I read from this forum, TripleDES requires the unlimited strength jurisdiction policy files,I find JDK1.6 has include files local_policy.jar and US_export_policy.jar under <java_home>/jre/lib/security directory, where is wrong above error? How to do it? <br>
<br>Thanks</div>
<br />------------------------------------------------------------------------------
<br>Join us December 9, 2009 for the Red Hat Virtual Experience,
<br>a free event focused on virtualization and cloud computing.
<br>Attend in-depth sessions from your desk. Your couch. Anywhere.
<br><a href="http://p.sf.net/sfu/redhat-sfdev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/redhat-sfdev2dev</a><br />_______________________________________________
<br>jasypt-users mailing list
<br><a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26596113&i=0" target="_top" rel="nofollow">jasypt-users@...</a>
<br><a href="https://lists.sourceforge.net/lists/listinfo/jasypt-users" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/jasypt-users</a><br><p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-26593821How to use jasypt+spring+c3p02009-12-01T07:37:52Z2009-12-01T07:37:52ZrodphoenixI use spring+c3p0,I use jdbc.properties to configure database souce
<br>jdbc.driverClassName=oracle.jdbc.OracleDriver
<br>jdbc.url=jdbc:oracle:thin:@127.0.0.1:1521:test
<br>jdbc.username=scott
<br>jdbc.password=tiger
<br><br>Now I want to use jasypt+spring+c3p0,but I don't know how to configure it. How to do it?
<br><br>Thanks
<br><br> <p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-26572616Re: can't query encrypted hibernate field2009-11-30T02:46:58Z2009-11-30T02:46:58ZAllan LangAs per <a href="http://www.jasypt.org/hibernate3.html" target="_top" rel="nofollow">http://www.jasypt.org/hibernate3.html</a> note that you cannot search on an encrypted field:
<br><br><i>"...encryption sets a limitation on your Hibernate usage: security standards establish that two different encryption operations on the same data should not return the same value (due to the use of a random salt). Because of this, none of the fields that are set to be encrypted when persisted can be a part of a WHERE clause in your search queries for the entity they belong to."</i><br><br>You probably need to drop the password from the WHERE clause, and instead apply checkPassword() of BasicPasswordEncryptor (or similar) to the result row(s?) which are returned.
<br><br>Hope this helps,
<br>Allan
<br><br><blockquote class="quote light-black dark-border-color"><div class="quote light-border-color">
<div class="quote-author" style="font-weight: bold;">offbyone wrote:</div>
<div class="quote-message shrinkable-quote">I am using spring 2.5 + hibernate 3. I am trying to encrypt my user password field. I set up an encryptor in spring as such:
<br> <bean id="hibernateStringEncryptor"
<br> class="org.jasypt.hibernate.encryptor.HibernatePBEStringEncryptor">
<br> <property name="registeredName">
<br> <value>strongHibernateStringEncryptor</value>
<br> </property>
<br> <property name="algorithm">
<br> <value>PBEWithMD5AndTripleDES</value>
<br> </property>
<br> <property name="password">
<br> <value>mypassword</value>
<br> </property>
<br> </bean>
<br><br>In my user class mapping I have the following:
<br><hibernate-mapping auto-import="true">
<br> <typedef name="encryptedString" class="org.jasypt.hibernate.type.EncryptedStringType">
<br> <param name="encryptorRegisteredName">strongHibernateStringEncryptor</param><br> </typedef>
<br>.
<br><class name="User" table="USERS">
<br> <id access="field" column="id" name="id" type="int" unsaved-value="-1">
<br> <generator class="sequence">
<br> <param name="sequence">SEQ_USERS</param><br> </generator>
<br> </id>
<br> <property column="USERNAME" name="username" not-null="true" type="string"/>
<br> <property column="PASSWORD" name="password" not-null="true" type="encryptedString"/>
<br><br><br>When I create a new user, the password is properly encrypted. I can also query users via load or through the object map and I tested that the password is being decrypted.
<br><br>***However, I can not query a user using the password field:
<br><br> String query = "select user from User user where active=? and username=? and password=?";
<br> List results = getHibernateTemplate().find(query, new Object[]{true, userName, password});
<br><br>I get no results whenever I query using the encrypted field. What am I doing wrong?
<br>thanks
<br>-ryan
</div>
</div></blockquote>
<p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-26572211Re: Jasypt + Hibernate3 integration + decrypt2009-11-30T02:15:21Z2009-11-30T02:15:21ZAllan LangI've also recently hit the "No string encryptor registered for hibernate..." error and I'm also using Spring. The solution I found to the intermittent initialisation problem was to make my data access components dependent on the strongHibernateStringEncryptor bean, thereby ensuring that bean was always present in the application context <b>before</b> any of my data access components might start to try doing anything requiring en/decryption. I think I hit the problem because another of the beans in my Spring definition performed some data access as part of the execution of its <i>init-method</i>, and I guess there is no guarantee that this is called after all other beans have been instantiated.
<br><br>So anyway, long explanation, but simple solution. Try adding something like this, shown here on another bean which forms part of my data access infrastructure:
<br><br> <bean id="transactionManager"
<br> class="org.springframework.orm.hibernate3.HibernateTransactionManager"
<br> <b>depends-on="hibernateStringEncryptor"></b><br> <property name="sessionFactory" ref="sessionFactory" />
<br> ...
<br> </bean>
<br><br> <bean id="hibernateStringEncryptor" class="org.jasypt.hibernate.encryptor.HibernatePBEStringEncryptor">
<br> <property name="registeredName" value="strongHibernateStringEncryptor"/>
<br> <property name="password" value="..." />
<br> </bean>
<br><br>Hope that helps.
<br><br>Allan
<br><br><br><quote author="bornleo"><br>You need to make an entry of strongHibernateStringEncryptor in your spring context i.e. applicationConext.xml in my case.
<br><br>Something like this.
<br><br><bean id="strongHibernateStringEncryptor"
<br> class="org.jasypt.encryption.pbe.StandardPBEStringEncryptor">
<br> <property name="algorithm">
<br> <value>PBEWithMD5AndTripleDES</value>
<br> </property>
<br> <property name="password">
<br> <value>jasypt</value>
<br> </property>
<br> </bean>
<br><br>Hope this helps.
<br><br>Leo.
<br><br><blockquote class="quote light-black dark-border-color"><div class="quote light-border-color">
<div class="quote-author" style="font-weight: bold;">jmiranda wrote:</div>
<div class="quote-message shrinkable-quote">Solved.
<br><br>Everything works well doing some executions, I initialize Spring container (is a web app) 5 or 6 times and then...
<br><br>Caused by: org.jasypt.exceptions.EncryptionInitializationException: No string encryptor registered for hibernate with name "strongHibernateStringEncryptor"
<br> at org.jasypt.hibernate.type.AbstractEncryptedAsStringType.checkInitialization(AbstractEncryptedAsStringType.java:250)
<br> at org.jasypt.hibernate.type.AbstractEncryptedAsStringType.nullSafeGet(AbstractEncryptedAsStringType.java:142)
<br> at org.hibernate.type.CustomType.nullSafeGet(CustomType.java:105)
<br> at org.hibernate.type.AbstractType.hydrate(AbstractType.java:81)
<br><br>Any ideas?.
<br><br><blockquote class="quote light-black dark-border-color"><div class="quote light-border-color">
<div class="quote-author" style="font-weight: bold;">jmiranda wrote:</div>
<div class="quote-message shrinkable-quote">Hi!
<br><br>I would like to encrypt some attributes of an entity in a transparent way when I persist it into database using Hibernate. I've followed the guide: <a href="http://www.jasypt.org/hibernate3.html" target="_top" rel="nofollow">http://www.jasypt.org/hibernate3.html</a> and it works like a charm.
<br><br>The problem is that when I want to get back the entity from database I would like to get the entity with all attributes decryted. I don't know if I am missing something important but I get the attributes encrypted.
<br><br>I've followed all the steps of the guide. Any ideas?.
<br><br>Thanks in advance.
</div>
</div></blockquote>
</quote></div>
</div></blockquote>
</quote><br><p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-26508179Re: Spring Security 3.x / Patch2009-11-24T22:39:14Z2009-11-24T22:39:14ZOliver.DHello all,
<br><br>as a workaround just copy the PasswordEncoder source to a package in yout application ( org.jasypt.spring.security3 for example) an substitute the interface. So you don´t have to wait for the new release.
<br>@Daniel: Do you want the code of may sugested solution (common base class)?
<br><br>Oliver
<br><br><blockquote class="quote light-black dark-border-color"><div class="quote light-border-color">
<div class="quote-author" style="font-weight: bold;">dfernandez wrote:</div>
<div class="quote-message shrinkable-quote">+------------------------+
<br> Jasypt Users List
<br> <a href="http://www.jasypt.org" target="_top" rel="nofollow">http://www.jasypt.org</a>
<br>+------------------------+
<br><br>Is anyone listening on this user forum to put out an updated release of
<br>> JASYPT???
<br>>
<br><br><br>Of course there is. Jasypt will include support for Spring Security 3.0 in
<br>its next release. You can expect it to be published in a few weeks.
<br><br>Regards,
<br>Daniel.
<br><br>------------------------------------------------------------------------------
<br>Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day
<br>trial. Simplify your report design, integration and deployment - and focus on
<br>what you do best, core application coding. Discover what's new with
<br>Crystal Reports now. <a href="http://p.sf.net/sfu/bobj-july" target="_top" rel="nofollow">http://p.sf.net/sfu/bobj-july</a><br>_______________________________________________
<br>jasypt-users mailing list
<br>jasypt-users@lists.sourceforge.net
<br><a href="https://lists.sourceforge.net/lists/listinfo/jasypt-users" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/jasypt-users</a></div>
</div></blockquote>
<p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-26501996Re: Spring Security 3.x / Patch2009-11-24T11:33:49Z2009-11-24T11:33:49Zdfernandez+------------------------+
<br> Jasypt Users List
<br> <a href="http://www.jasypt.org" target="_top" rel="nofollow">http://www.jasypt.org</a>
<br>+------------------------+
<br><br /><br><br><div class="gmail_quote"><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
Is anyone listening on this user forum to put out an updated release of<br>
JASYPT???<br></blockquote></div><br><br>Of course there is. Jasypt will include support for Spring Security 3.0 in its next release. You can expect it to be published in a few weeks.<br><br>Regards,<br>Daniel.<br><br><br>
<br />------------------------------------------------------------------------------
<br>Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day
<br>trial. Simplify your report design, integration and deployment - and focus on
<br>what you do best, core application coding. Discover what's new with
<br>Crystal Reports now. <a href="http://p.sf.net/sfu/bobj-july" target="_top" rel="nofollow">http://p.sf.net/sfu/bobj-july</a><br />_______________________________________________
<br>jasypt-users mailing list
<br><a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26501996&i=0" target="_top" rel="nofollow">jasypt-users@...</a>
<br><a href="https://lists.sourceforge.net/lists/listinfo/jasypt-users" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/jasypt-users</a><br><p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-26499917Re: Spring Security 3.x / Patch2009-11-24T10:39:23Z2009-11-24T10:39:23ZSubaruWRCI also need JASYPT to support Spring Security 3.0 ASAP. The interface org.springframework.security.providers.encoding.PasswordEncoder needs to be updated to the most recent Spring Security 3.0 package names.
<br><br>Is anyone listening on this user forum to put out an updated release of JASYPT???
<br>
<br><blockquote class="quote light-black dark-border-color"><div class="quote light-border-color">
<div class="quote-author" style="font-weight: bold;">Oliver.D wrote:</div>
<div class="quote-message">Hello,
<br><br>in Spring Security the PasswordEncoder interface was moved from org.springframework.security.providers.encoding.PasswordEncoder to org.springframework.security.authentication.encoding.PasswordEncoder.
<br>To user the jasypt password encoder with spring security 3 the new interface should be implemented. Just copy the PasswordEncoder class in to a new package (org.jasypt.spring.security3 ?) an substitute the interface.
<br>A more elegant way would be to refactor the PasswordEncoder to a "BasePasswordEncoder". Both PasswordEncoders a derived classe with differs only in the implemented interface.
<br><br>Oliver
</div>
</div></blockquote>
<p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-26454685SHA-1 SecretKeyFactory not available2009-11-21T01:50:52Z2009-11-21T01:50:52ZimustafaHi,
<br>I am trying to use the org.jasypt.encryption.pbe.StandardPBEStringEncryptor encryptor with the following properties:
<br> algorithm="SHA-1"
<br> stringOutputType="hexadecimal"
<br> keyObtentionIterations="5000"
<br><br>right before I issue the encrypt("someText"), I set the password to some value.
<br><br>Now, when I call the encrypt method, I get the exception with this error: SHA-1 SecretKeyFactory not available
<br><br>I appreciate your help.
<br><br>Here is the full exception:
<br><br>Caused by: org.jasypt.exceptions.EncryptionInitializationException: java.security.NoSuchAlgorithmException: SHA-1 SecretKeyFactory not available
<br> at org.jasypt.encryption.pbe.StandardPBEByteEncryptor.initialize(StandardPBEByteEncryptor.java:597)
<br> at org.jasypt.encryption.pbe.StandardPBEStringEncryptor.initialize(StandardPBEStringEncryptor.java:488)
<br> at org.jasypt.encryption.pbe.StandardPBEStringEncryptor.encrypt(StandardPBEStringEncryptor.java:541)
<br> at com.lm.lic.manager.service.LmxStringEncryptorHandler.encrypt(LmxStringEncryptorHandler.java:24)
<br> at com.lm.lic.manager.management.LicenseGenerator.generate(LicenseGenerator.java:50)
<br> at com.lm.lic.manager.management.LicenseGenerator.generate(LicenseGenerator.java:36)
<br> at com.lm.lic.manager.management.LicenseManager.generate(LicenseManager.java:38)
<br> at com.lm.lic.manager.controller.LicenseAvailabilityAdvisor.generateLicenses(LicenseAvailabilityAdvisor.java:76)
<br> at com.lm.lic.manager.controller.WithdrawLicController.handleBlackBerryWithdrawal(WithdrawLicController.java:256)
<br> at com.lm.lic.manager.controller.WithdrawLicController.onSubmit(WithdrawLicController.java:190)
<br> at org.springframework.web.servlet.mvc.SimpleFormController.processFormSubmission(SimpleFormController.java:272)
<br> at org.springframework.web.servlet.mvc.CancellableFormController.processFormSubmission(CancellableFormController.java:145)
<br> at org.springframework.web.servlet.mvc.AbstractFormController.handleRequestInternal(AbstractFormController.java:268)
<br> at com.lm.lic.manager.controller.WithdrawLicController.handleRequestInternal(WithdrawLicController.java:106)
<br> at org.springframework.web.servlet.mvc.AbstractController.handleRequest(AbstractController.java:148)
<br> at org.springframework.web.servlet.mvc.SimpleControllerHandlerAdapter.handle(SimpleControllerHandlerAdapter.java:48)
<br> at org.springframework.web.servlet.DispatcherServlet.doDispatch(DispatcherServlet.java:824)
<br> at org.springframework.web.servlet.DispatcherServlet.doService(DispatcherServlet.java:769)
<br> at org.springframework.web.servlet.FrameworkServlet.processRequest(FrameworkServlet.java:613)
<br> ... 33 more
<br>Caused by: java.security.NoSuchAlgorithmException: SHA-1 SecretKeyFactory not available
<br> at javax.crypto.SecretKeyFactory.<init>(DashoA13*..)
<br> at javax.crypto.SecretKeyFactory.getInstance(DashoA13*..)
<br> at org.jasypt.encryption.pbe.StandardPBEByteEncryptor.initialize(StandardPBEByteEncryptor.java:584)
<br> ... 51 more
<br><p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-26314345Spring Security 3.x / Patch2009-11-11T23:01:43Z2009-11-11T23:01:43ZOliver.DHello,
<br><br>in Spring Security the PasswordEncoder interface was moved from org.springframework.security.providers.encoding.PasswordEncoder to org.springframework.security.authentication.encoding.PasswordEncoder.
<br>To user the jasypt password encoder with spring security 3 the new interface should be implemented. Just copy the PasswordEncoder class in to a new package (org.jasypt.spring.security3 ?) an substitute the interface.
<br>A more elegant way would be to refactor the PasswordEncoder to a "BasePasswordEncoder". Both PasswordEncoders a derived classe with differs only in the implemented interface.
<br><br>Oliver<p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-26225250Re: Spring with Jasypt - Decryption not working2009-11-05T17:07:40Z2009-11-05T17:07:40Zrahul somasunderamNo, I'm just using the unsecure password still...
<br><br><blockquote class="quote light-black dark-border-color"><div class="quote light-border-color">
<div class="quote-author" style="font-weight: bold;">hoffmandirt wrote:</div>
<div class="quote-message">Did you get this working? I am experiencing the same problem.
</div>
</div></blockquote>
<div class="signature">Rahul Somasunderam</div><p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-26215798Re: Spring with Jasypt - Decryption not working2009-11-05T08:38:17Z2009-11-05T08:38:17ZhoffmandirtDid you get this working? I am experiencing the same problem.<p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-26108536Re: cannot find my registered string encryptor2009-10-29T01:12:57Z2009-10-29T01:12:57Zszygy+------------------------+
<br> Jasypt Users List
<br> <a href="http://www.jasypt.org" target="_top" rel="nofollow">http://www.jasypt.org</a>
<br>+------------------------+
<br><br />Problem fixed... for those who are curious, it looks like the problem is just that my application context files couldn't be loaded when running my JUnit test because they weren't in the classpath.<br><br>My solution was to copy the application context file to the same folder as my JUnit test, and then manually set the classpatch to include that file.<br>
<br>Not the most elegant solution, but it does work. Still on the lookout for something that won't force me to copy the applicationContext file.<br><br><br><div class="gmail_quote">On Wed, Oct 28, 2009 at 8:12 PM, Stephen Dewey <span dir="ltr"><<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26108536&i=0" target="_top" rel="nofollow">stepheneliotdewey@...</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"><span><span><span><span><span style="border-left-width: 3px;"><span style="display: block;">I have looked all over the web but can't seem to find anything addressing a situation like this...
<br><br>I have a simple column that I am trying to encrypt. I have
specified the type as encrypted in the .hbm.xml file associated with
the POJO itself, where I provide the name of the registered encryptor
in the typedef element.
<br><br>If I register the encryptor within the code itself (i.e. by
executing actual Java code to register the encryptor), everything works
and my stuff is saved encrypted.
<br><br>However, if instead of executing Java code, I simply place a
bean in applicationContext.xml (or applicationContext-dao.xml in my
case), and simply copy that XML bean in, I get an error "No string
encryptor registered for hibernate with name
'jasyptHibernateEncryptor'"
<br><br>I am following the instructions laid out at:
<br><a href="http://www.jasypt.org/hibernate3.html" rel="nofollow" target="_blank">http://www.jasypt.org/hibernate3.html</a><br><br>There isn't a spelling error or anything. Any idea what I should look for?
</span></span></span></span></span></span>
</blockquote></div><br>
<br />------------------------------------------------------------------------------
<br>Come build with us! The BlackBerry(R) Developer Conference in SF, CA
<br>is the only developer event you need to attend this year. Jumpstart your
<br>developing skills, take BlackBerry mobile applications to market and stay
<br>ahead of the curve. Join us from November 9 - 12, 2009. Register now!
<br><a href="http://p.sf.net/sfu/devconference" target="_top" rel="nofollow">http://p.sf.net/sfu/devconference</a><br />_______________________________________________
<br>jasypt-users mailing list
<br><a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26108536&i=1" target="_top" rel="nofollow">jasypt-users@...</a>
<br><a href="https://lists.sourceforge.net/lists/listinfo/jasypt-users" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/jasypt-users</a><br><p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-26104360cannot find my registered string encryptor2009-10-28T17:12:22Z2009-10-28T17:12:22Zszygy+------------------------+
<br> Jasypt Users List
<br> <a href="http://www.jasypt.org" target="_top" rel="nofollow">http://www.jasypt.org</a>
<br>+------------------------+
<br><br /><span class="ul-threaded" style="margin: 1em 0pt 0pt -20px;"><span class="connect"><span id="li1" class="li-threaded"><span class="threaded"><span style="position: static; border-left-width: 3px;" class="no-bg-color post-border post-middle"><span id="post26104232" style="display: block;">I have looked all over the web but can't seem to find anything addressing a situation like this...
<br><br>I have a simple column that I am trying to encrypt. I have
specified the type as encrypted in the .hbm.xml file associated with
the POJO itself, where I provide the name of the registered encryptor
in the typedef element.
<br><br>If I register the encryptor within the code itself (i.e. by
executing actual Java code to register the encryptor), everything works
and my stuff is saved encrypted.
<br><br>However, if instead of executing Java code, I simply place a
bean in applicationContext.xml (or applicationContext-dao.xml in my
case), and simply copy that XML bean in, I get an error "No string
encryptor registered for hibernate with name
'jasyptHibernateEncryptor'"
<br><br>I am following the instructions laid out at:
<br><a href="http://www.jasypt.org/hibernate3.html" target="_top" rel="nofollow">http://www.jasypt.org/hibernate3.html</a><br><br>There isn't a spelling error or anything. Any idea what I should look for?
</span></span></span></span></span></span>
<br />------------------------------------------------------------------------------
<br>Come build with us! The BlackBerry(R) Developer Conference in SF, CA
<br>is the only developer event you need to attend this year. Jumpstart your
<br>developing skills, take BlackBerry mobile applications to market and stay
<br>ahead of the curve. Join us from November 9 - 12, 2009. Register now!
<br><a href="http://p.sf.net/sfu/devconference" target="_top" rel="nofollow">http://p.sf.net/sfu/devconference</a><br />_______________________________________________
<br>jasypt-users mailing list
<br><a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26104360&i=0" target="_top" rel="nofollow">jasypt-users@...</a>
<br><a href="https://lists.sourceforge.net/lists/listinfo/jasypt-users" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/jasypt-users</a><br><p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-26088208MD5 issue 1: how to increase interations without impact on the existing2009-10-27T19:05:51Z2009-10-27T19:05:51Zjames.sqHi ,
<br><br><br>I am using jasypt's MD5 for encoding password of user for past few months. I am wondering what is default value for interations. I think if I increase the value of interations,(e.g. may be 10000) it shall be affect my existing application. are there have any advice on it?
<br><br>Thanks in advance.<p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-26004828How to encrypt/decrypt creditcard numbers in a database?2009-10-21T23:43:20Z2009-10-21T23:43:20ZKoti SHi,
<br><br>Any one can please give an example with configuration details for encrpting the credit card number in a database and decryting from the database.
<br><br>Thanks,
<br>Koti
<br><br><p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-25994177NoClassDefFoundError displayed when running encrypt.sh2009-10-21T07:57:12Z2009-10-21T07:57:12ZNach PLI tried to run encrypt.sh file in cygwin. I used the following command
<br><br><b>./encrypt.sh input="this is message" password=MY_PASSWORD verbose=false</b><br><br>I am getting the below error message in cygwin. Please let me know the classpath entries to run this file and how i need to set it.
<br><br>vmuser@vmware01 /tmp/jasypt-1.5/bin
<br>$ ./encrypt.sh input="this is message" password=MY_PASSWORD verbose=false
<br><b>Exception in thread "main" java.lang.NoClassDefFoundError: org/jasypt/intf/cli/J
<br>asyptPBEStringEncryptionCLI
<br>Caused by: java.lang.ClassNotFoundException: org.jasypt.intf.cli.JasyptPBEString
<br>EncryptionCLI
<br> at java.net</b>.URLClassLoader$1.run(Unknown Source)
<br> at java.security.AccessController.doPrivileged(Native Method)
<br> at java.net.URLClassLoader.findClass(Unknown Source)
<br> at java.lang.ClassLoader.loadClass(Unknown Source)
<br> at sun.misc.Launcher$AppClassLoader.loadClass(Unknown Source)
<br> at java.lang.ClassLoader.loadClass(Unknown Source)
<br> at java.lang.ClassLoader.loadClassInternal(Unknown Source)
<br>Could not find the main class: org.jasypt.intf.cli.JasyptPBEStringEncryptionCLI.
<br> Program will exit.
<br><br><br><p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-25877049Decrypting Jasypt PBE encrypted data in a windows app2009-10-13T10:12:46Z2009-10-13T10:12:46ZlpintThe company I work for had a portal written for them that is written in Java. They are using Jasypt PBE to encrypt birtdates, driver's license numbers and social security numbers. I need to decrypt this data from a windows application that I am writing (not in Java). I am attempting to use an ActiveX control from Chilkat to do the decryption (and encryption) in this application. I am unable to figure out how to go about the decryption and the people who wrote the portal are not all that helpful.
<br><br>I believe the data in the database has the "salt" appended to the front of the encrypted data. It is supposed to be base64 encoded. I know the password used to encrypt it. The people who wrote the portal said that they think the first 8 characters of the encrypted data string is the salt. They think I need to base64 decode the data, then use the first 8 characters as the salt and the remaining data as the data to be decrypted. They think the iteration count is 1000. (Which I don't think I need to decrypt. That is only used when generating a new salt, right?) They said Jasypt uses "PBEWithMD5AndDES", which I'm thinking means MD5 hash algorithm for the salt generation and DES for the actual data encryption algorithm.
<br><br>There appears to be 2 versions of PBE encryption and they can't tell me which one is being used. They don't know what the key length should be (they think it might be 128).
<br><br>I've tried every combination of parameters that I can come up with but I am getting no where on this and I've spent many days on it already. Can anybody point me in the right direction?
<br><br>Is there an ActiveX control available that handles this for me in the same manner that it is done in Java?
<br><br>I have used the Jasypt CLI and it works for my testing but is not a viable solution for the production environment.
<br><br>Thanks for your time and consideration,
<br><br>Larry
<br><p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-25838174Re: Database encryption and fields/columns that need to be decrypted2009-10-10T13:37:54Z2009-10-10T19:54:50ZcornflakesI looked at the following article which shows how Jasypt does database encryption with Hibernate:
<br><a href="http://jasypt.org/hibernate3.html" target="_top" rel="nofollow">http://jasypt.org/hibernate3.html</a><br><br>Under the section "Providing the encryptor to Hibernate", there are two options": <b>Using Spring</b> and <b>Without Spring</b>. In the examples <b>Using Spring</b> the password for the encryptor is stored in the spring bean definition. Is that not a security hole? Where should it be stored, as an environmental variable and then read in? Security-wise, is that sufficient?
<br><br>In the example <b>Without Spring</b>, there is no password at all. Should there be? Where should it be stored (to comply with security standards)?
<br><br>To summarize, the use case I have is:
<br><br>1. encrypt user passwords
<br>2. encrypt other sensitive data, like social security numbers, names, and bank account numbers.
<br><br>With regards to 2, the reason for encrypting this data ((like social security numbers, and bank account numbers) is if someone runs off with the box, he/she could not do anything with the data. This data, however would still need to be decrypted by the application so it can be used (or presented to the user). Where should this encryption/decryption key be stored? How does this work with Jasypt (the guide states that encrypted attributes/properties cannot be used as part of projection queries (SUM, MAX, ..) as this is done on the database before decryption by hibernate, and cannot also be part of an ORDER BY clause). I guess they can be used with the WHERE clause, as long as a fixed salt generator is used?
<br><br>Thanks!
<br><br><p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-25836616Database encryption and fields/columns that need to be decrypted2009-10-10T10:45:29Z2009-10-10T10:45:29ZcornflakesHello,
<br><br>I'm currently investigating encrypting certain database columns, such as user passwords and other sensitive data such as usernames and social security numbers. The (java) application uses Hibernate and a MySQL database on the backend.
<br><br>The use case is, username, password, and social security are stored in the database. According to the Jasypt documentation, one should never be able to decrypt the password (the code should just compare digests). That makes sense for passwords. What about for other data, like usernames and social security numbers? This is data that we'll want to encrypt in the database, but would also need to be retrieved. Where would/should the encryption key be stored (so if someone hacks through the system, they cannot decrypt this information from the database)?
<br><br>Jasypt seems to handle this, but I wanted to confirm with the following, more specific questions:
<br><br>1. In the application code (business logic), what will this code be working with? More specifically, as mentioned in the article below for encrypting user passwords, it says "you should not even have a way to get to read/know/see your users' passwords, no matter if you are the system administrator". I understand that for passwords, but for other data, like social security numbers or usernames, we'll want to make sure that the data stored in the database is encrypted, but that we can obtain the original data (username and social security number). How does Jasypt handle this, or more importantly, how should this be handled in the application (using Jasypt)?
<br><br><a href="http://jasypt.org/howtoencryptuserpasswords.html" target="_top" rel="nofollow">http://jasypt.org/howtoencryptuserpasswords.html</a><br><br>2. If we use Jasypt to encrypt the database column for the user password using a one way digest method, there is no way of someone gaining access to the original password (as you explained in that article).
<br><br>With regards to the usernames and passwords, these too can be encrypted in the database, but since we need to be able decrypt this information, wouldn't an encryption key need to be stored somewhere (like in the application layer)? Where should this encryption key be stored, so if someone were to hack through the system, they couldn't decrypt these fields? Or maybe there is a better way to do this?
<br><br>Thanks in advance (and sorry for what could be obvious).<p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-25816204HMAC support2009-10-08T23:42:09Z2009-10-08T23:42:09ZCarlos QuirozHi all
<br><br>First of all thanks to you for jasypt, it indeed simplifies many of the chores on encryption for everyday usage.
<br><br>In my current project one thing I need to do is to create keyed MACs or HMACs, in paticular SHA-1 HMAC as needed for example for OAuth <a href="http://oauth.net/core/1.0a" target="_top" rel="nofollow">http://oauth.net/core/1.0a</a><br><br>I couldn't find support for hmacs in javasypt but perhaps I'm not looking well enough. Would an hmac be the same as normal digestor with a given salt?
<br><br>Regards
<br>Carlos Quiroz<p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-25774152using jasypt salt and storing the salt in the db2009-10-06T11:26:14Z2009-10-06T11:26:14ZjhgreeneHi -
<br>I am currently using jasypt to encrypt my users' passwords, but am not using a salt. From what I've read, if I call passwordEncryptor.setPlainDigest(false), where passwordEncryptor is the ConfigurablePasswordEncryptor instance, a salt and iteration count will be used automatically. This sounds fine, but I also believe I will need to store the salt with the account's username and salted hash (hashed salt+password), so that users may be authenticated when they log in. I haven't seen a very clear example or explanation on how to do this. Can someone point me to a simple example on not only how to apply a salt automatically using jasypt, but going further and getting a handle to the salt so it can be stored in the db? Thank you.<p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-25471110Re: (no subject)2009-09-15T18:22:45Z2009-09-15T18:22:45ZNiklasr+------------------------+
<br> Jasypt Users List
<br> <a href="http://www.jasypt.org" target="_top" rel="nofollow">http://www.jasypt.org</a>
<br>+------------------------+
<br><br />both any DES and any md5 are stricly meant broken and can smoothly tunnel to stronger, I heard and inform, sha or rsa are strongest (rsa you can claim copyright Euclid). integrate with maven is very convenient, build activates download:<br>
<span style="font-family: courier new,monospace;"><dependency></span><br style="font-family: courier new,monospace;"><span style="font-family: courier new,monospace;"><groupId>org.jasypt</groupId></span><br style="font-family: courier new,monospace;">
<span style="font-family: courier new,monospace;"><artifactId>jasypt</artifactId></span><br style="font-family: courier new,monospace;"><span style="font-family: courier new,monospace;"><version>1.3</version></span><br style="font-family: courier new,monospace;">
<span style="font-family: courier new,monospace;"><scope>compile</scope></span><br style="font-family: courier new,monospace;"><span style="font-family: courier new,monospace;"></dependency></span><br>variable algorithm is very good forwardcompatible pattern, like math.h any functions returns, any function has variables and providerindependent line seems<br>
passwordEncryptor.encryptPassword(userPassword);<br>thanks to all, project succeds even the likely<br>code disponible <a href="http://montao.googlecode.com" target="_top" rel="nofollow">montao.googlecode.com</a><br>spanish <a href="http://m.Koolbusiness.com?hl=es" target="_top" rel="nofollow">m.Koolbusiness.com?hl=es</a><br>
<br><br>
<br />------------------------------------------------------------------------------
<br>Come build with us! The BlackBerry® Developer Conference in SF, CA
<br>is the only developer event you need to attend this year. Jumpstart your
<br>developing skills, take BlackBerry mobile applications to market and stay
<br>ahead of the curve. Join us from November 9-12, 2009. Register now!
<br><a href="http://p.sf.net/sfu/devconf" target="_top" rel="nofollow">http://p.sf.net/sfu/devconf</a><br />_______________________________________________
<br>jasypt-users mailing list
<br><a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=25471110&i=0" target="_top" rel="nofollow">jasypt-users@...</a>
<br><a href="https://lists.sourceforge.net/lists/listinfo/jasypt-users" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/jasypt-users</a><br><p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-25457508Re: (no subject)2009-09-15T09:40:24Z2009-09-15T09:40:24Zdfernandez+------------------------+
<br> Jasypt Users List
<br> <a href="http://www.jasypt.org" target="_top" rel="nofollow">http://www.jasypt.org</a>
<br>+------------------------+
<br><br /><br>The algorithms are provided by your JCE implementation, not jasypt. So you should query your JCE directly and see what's available for you in your providers.<br><br>Regards,<br>Daniel.<br><br><br><br><div class="gmail_quote">
On Tue, Sep 15, 2009 at 6:07 PM, Mike Baranski <span dir="ltr"><<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=25457508&i=0" target="_top" rel="nofollow">list-subscriptions@...</a>></span> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<div class="im">+------------------------+<br>
Jasypt Users List<br>
<a href="http://www.jasypt.org" target="_blank" rel="nofollow">http://www.jasypt.org</a><br>
+------------------------+<br>
</div>Wonderful, thanks for the help. Is there an algorithm list somewhere? I<br>
looked for it but could not find one (even in the javadocs).<br>
<br>
Thanks,<br>
<font color="#888888">Mike.<br>
</font><div><div></div><div class="h5"><br>
>-----Original Message-----<br>
>From: Daniel Fernández [mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=25457508&i=1" target="_top" rel="nofollow">dfernandez@...</a>]<br>
>Sent: Tuesday, September 15, 2009 11:40 AM<br>
>To: Jasypt users list<br>
>Subject: Re: [jasypt-users] (no subject)<br>
><br>
><br>
>TripleDES is not a valid PBE algorithm.<br>
><br>
>You should be using something like PBEWithMD5AndTripleDES, as is used in<br>
>some examples in the website.<br>
><br>
>Regards,<br>
>Daniel<br>
><br>
><br>
><br>
>On Tue, Sep 15, 2009 at 4:41 PM, Mike Baranski <list-<br>
><a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=25457508&i=2" target="_top" rel="nofollow">subscriptions@...</a>> wrote:<br>
><br>
><br>
> +------------------------+<br>
> Jasypt Users List<br>
> <a href="http://www.jasypt.org" target="_blank" rel="nofollow">http://www.jasypt.org</a><br>
> +------------------------+<br>
> I'm having the following problem, note that I have downloaded and<br>
>installed<br>
> (per the readme file) the new jars for "Strong" encryption. Can<br>
>someone<br>
> suggest what I might be doing wrong (I added the JAVA_HOME echo to<br>
>the shell<br>
> script)?<br>
><br>
> [root@sirrus bin]# ./encrypt.sh input="informix"<br>
>password="SMCsecur3"<br>
> algorithm="TripleDES"<br>
> Java Home: /usr/java/latest<br>
><br>
> ----ENVIRONMENT-----------------<br>
><br>
> Runtime: Sun Microsystems Inc. Java HotSpot(TM) Client VM<br>
>1.6.0_02-b05<br>
><br>
><br>
><br>
> ----ARGUMENTS-------------------<br>
><br>
> algorithm: TripleDES<br>
> input: informix<br>
> password: SMCsecur3<br>
><br>
><br>
><br>
> ----ERROR-----------------------<br>
><br>
> java.security.spec.InvalidKeySpecException: Inappropriate key<br>
>specification<br>
><br>
><br>
> ------------------------------------------------------------------<br>
>------------<br>
> Come build with us! The BlackBerry&reg; Developer Conference in<br>
>SF, CA<br>
> is the only developer event you need to attend this year.<br>
>Jumpstart your<br>
> developing skills, take BlackBerry mobile applications to market<br>
>and stay<br>
> ahead of the curve. Join us from November 9&#45;12, 2009. Register<br>
>now&#33;<br>
> <a href="http://p.sf.net/sfu/devconf" target="_blank" rel="nofollow">http://p.sf.net/sfu/devconf</a><br>
> _______________________________________________<br>
> jasypt-users mailing list<br>
> <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=25457508&i=3" target="_top" rel="nofollow">jasypt-users@...</a><br>
> <a href="https://lists.sourceforge.net/lists/listinfo/jasypt-users" target="_blank" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/jasypt-users</a><br>
><br>
><br>
<br>
<br>
<br>
------------------------------------------------------------------------------<br>
Come build with us! The BlackBerry&reg; Developer Conference in SF, CA<br>
is the only developer event you need to attend this year. Jumpstart your<br>
developing skills, take BlackBerry mobile applications to market and stay<br>
ahead of the curve. Join us from November 9&#45;12, 2009. Register now&#33;<br>
<a href="http://p.sf.net/sfu/devconf" target="_blank" rel="nofollow">http://p.sf.net/sfu/devconf</a><br>
_______________________________________________<br>
jasypt-users mailing list<br>
<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=25457508&i=4" target="_top" rel="nofollow">jasypt-users@...</a><br>
<a href="https://lists.sourceforge.net/lists/listinfo/jasypt-users" target="_blank" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/jasypt-users</a><br>
</div></div></blockquote></div><br>
<br />------------------------------------------------------------------------------
<br>Come build with us! The BlackBerry® Developer Conference in SF, CA
<br>is the only developer event you need to attend this year. Jumpstart your
<br>developing skills, take BlackBerry mobile applications to market and stay
<br>ahead of the curve. Join us from November 9-12, 2009. Register now!
<br><a href="http://p.sf.net/sfu/devconf" target="_top" rel="nofollow">http://p.sf.net/sfu/devconf</a><br />_______________________________________________
<br>jasypt-users mailing list
<br><a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=25457508&i=5" target="_top" rel="nofollow">jasypt-users@...</a>
<br><a href="https://lists.sourceforge.net/lists/listinfo/jasypt-users" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/jasypt-users</a><br><p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-25456870Re: (no subject)2009-09-15T09:07:32Z2009-09-15T09:07:32ZMike Baranski-2+------------------------+
<br> Jasypt Users List
<br> <a href="http://www.jasypt.org" target="_top" rel="nofollow">http://www.jasypt.org</a>
<br>+------------------------+
<br>Wonderful, thanks for the help. Is there an algorithm list somewhere? I
<br>looked for it but could not find one (even in the javadocs).
<br><br>Thanks,
<br>Mike.
<br><div class='shrinkable-quote'><br>>-----Original Message-----
<br>>From: Daniel Fernández [mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=25456870&i=0" target="_top" rel="nofollow">dfernandez@...</a>]
<br>>Sent: Tuesday, September 15, 2009 11:40 AM
<br>>To: Jasypt users list
<br>>Subject: Re: [jasypt-users] (no subject)
<br>>
<br>>
<br>>TripleDES is not a valid PBE algorithm.
<br>>
<br>>You should be using something like PBEWithMD5AndTripleDES, as is used in
<br>>some examples in the website.
<br>>
<br>>Regards,
<br>>Daniel
<br>>
<br>>
<br>>
<br>>On Tue, Sep 15, 2009 at 4:41 PM, Mike Baranski <list-
<br>><a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=25456870&i=1" target="_top" rel="nofollow">subscriptions@...</a>> wrote:
<br>>
<br>>
<br>> +------------------------+
<br>> Jasypt Users List
<br>> <a href="http://www.jasypt.org" target="_top" rel="nofollow">http://www.jasypt.org</a><br>> +------------------------+
<br>> I'm having the following problem, note that I have downloaded and
<br>>installed
<br>> (per the readme file) the new jars for "Strong" encryption. Can
<br>>someone
<br>> suggest what I might be doing wrong (I added the JAVA_HOME echo to
<br>>the shell
<br>> script)?
<br>>
<br>> [root@sirrus bin]# ./encrypt.sh input="informix"
<br>>password="SMCsecur3"
<br>> algorithm="TripleDES"
<br>> Java Home: /usr/java/latest
<br>>
<br>> ----ENVIRONMENT-----------------
<br>>
<br>> Runtime: Sun Microsystems Inc. Java HotSpot(TM) Client VM
<br>>1.6.0_02-b05
<br>>
<br>>
<br>>
<br>> ----ARGUMENTS-------------------
<br>>
<br>> algorithm: TripleDES
<br>> input: informix
<br>> password: SMCsecur3
<br>>
<br>>
<br>>
<br>> ----ERROR-----------------------
<br>>
<br>> java.security.spec.InvalidKeySpecException: Inappropriate key
<br>>specification
<br>>
<br>>
<br>> ------------------------------------------------------------------
<br>>------------
<br>> Come build with us! The BlackBerry® Developer Conference in
<br>>SF, CA
<br>> is the only developer event you need to attend this year.
<br>>Jumpstart your
<br>> developing skills, take BlackBerry mobile applications to market
<br>>and stay
<br>> ahead of the curve. Join us from November 9-12, 2009. Register
<br>>now!
<br>> <a href="http://p.sf.net/sfu/devconf" target="_top" rel="nofollow">http://p.sf.net/sfu/devconf</a><br>> _______________________________________________
<br>> jasypt-users mailing list
<br>> <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=25456870&i=2" target="_top" rel="nofollow">jasypt-users@...</a>
<br>> <a href="https://lists.sourceforge.net/lists/listinfo/jasypt-users" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/jasypt-users</a><br>>
<br>>
</div><br><br><br>------------------------------------------------------------------------------
<br>Come build with us! The BlackBerry® Developer Conference in SF, CA
<br>is the only developer event you need to attend this year. Jumpstart your
<br>developing skills, take BlackBerry mobile applications to market and stay
<br>ahead of the curve. Join us from November 9-12, 2009. Register now!
<br><a href="http://p.sf.net/sfu/devconf" target="_top" rel="nofollow">http://p.sf.net/sfu/devconf</a><br>_______________________________________________
<br>jasypt-users mailing list
<br><a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=25456870&i=3" target="_top" rel="nofollow">jasypt-users@...</a>
<br><a href="https://lists.sourceforge.net/lists/listinfo/jasypt-users" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/jasypt-users</a><br><p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-25456404Re: (no subject)2009-09-15T08:39:45Z2009-09-15T08:39:45Zdfernandez+------------------------+
<br> Jasypt Users List
<br> <a href="http://www.jasypt.org" target="_top" rel="nofollow">http://www.jasypt.org</a>
<br>+------------------------+
<br><br /><br>TripleDES is not a valid PBE algorithm.<br><br>You should be using something like PBEWithMD5AndTripleDES, as is used in some examples in the website.<br><br>Regards,<br>Daniel<br><br><br><div class="gmail_quote">On Tue, Sep 15, 2009 at 4:41 PM, Mike Baranski <span dir="ltr"><<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=25456404&i=0" target="_top" rel="nofollow">list-subscriptions@...</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">+------------------------+<br>
Jasypt Users List<br>
<a href="http://www.jasypt.org" target="_blank" rel="nofollow">http://www.jasypt.org</a><br>
+------------------------+<br>
I'm having the following problem, note that I have downloaded and installed<br>
(per the readme file) the new jars for "Strong" encryption. Can someone<br>
suggest what I might be doing wrong (I added the JAVA_HOME echo to the shell<br>
script)?<br>
<br>
[root@sirrus bin]# ./encrypt.sh input="informix" password="SMCsecur3"<br>
algorithm="TripleDES"<br>
Java Home: /usr/java/latest<br>
<br>
----ENVIRONMENT-----------------<br>
<br>
Runtime: Sun Microsystems Inc. Java HotSpot(TM) Client VM 1.6.0_02-b05<br>
<br>
<br>
<br>
----ARGUMENTS-------------------<br>
<br>
algorithm: TripleDES<br>
input: informix<br>
password: SMCsecur3<br>
<br>
<br>
<br>
----ERROR-----------------------<br>
<br>
java.security.spec.InvalidKeySpecException: Inappropriate key specification<br>
<br>
<br>
------------------------------------------------------------------------------<br>
Come build with us! The BlackBerry&reg; Developer Conference in SF, CA<br>
is the only developer event you need to attend this year. Jumpstart your<br>
developing skills, take BlackBerry mobile applications to market and stay<br>
ahead of the curve. Join us from November 9&#45;12, 2009. Register now&#33;<br>
<a href="http://p.sf.net/sfu/devconf" target="_blank" rel="nofollow">http://p.sf.net/sfu/devconf</a><br>
_______________________________________________<br>
jasypt-users mailing list<br>
<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=25456404&i=1" target="_top" rel="nofollow">jasypt-users@...</a><br>
<a href="https://lists.sourceforge.net/lists/listinfo/jasypt-users" target="_blank" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/jasypt-users</a><br>
</blockquote></div><br>
<br />------------------------------------------------------------------------------
<br>Come build with us! The BlackBerry® Developer Conference in SF, CA
<br>is the only developer event you need to attend this year. Jumpstart your
<br>developing skills, take BlackBerry mobile applications to market and stay
<br>ahead of the curve. Join us from November 9-12, 2009. Register now!
<br><a href="http://p.sf.net/sfu/devconf" target="_top" rel="nofollow">http://p.sf.net/sfu/devconf</a><br />_______________________________________________
<br>jasypt-users mailing list
<br><a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=25456404&i=2" target="_top" rel="nofollow">jasypt-users@...</a>
<br><a href="https://lists.sourceforge.net/lists/listinfo/jasypt-users" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/jasypt-users</a><br><p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-25455283(no subject)2009-09-15T07:41:31Z2009-09-15T07:41:31ZMike Baranski-2+------------------------+
<br> Jasypt Users List
<br> <a href="http://www.jasypt.org" target="_top" rel="nofollow">http://www.jasypt.org</a>
<br>+------------------------+
<br>I'm having the following problem, note that I have downloaded and installed
<br>(per the readme file) the new jars for "Strong" encryption. Can someone
<br>suggest what I might be doing wrong (I added the JAVA_HOME echo to the shell
<br>script)?
<br><br>[root@sirrus bin]# ./encrypt.sh input="informix" password="SMCsecur3"
<br>algorithm="TripleDES"
<br>Java Home: /usr/java/latest
<br><br>----ENVIRONMENT-----------------
<br><br>Runtime: Sun Microsystems Inc. Java HotSpot(TM) Client VM 1.6.0_02-b05
<br><br><br><br>----ARGUMENTS-------------------
<br><br>algorithm: TripleDES
<br>input: informix
<br>password: SMCsecur3
<br><br><br><br>----ERROR-----------------------
<br><br>java.security.spec.InvalidKeySpecException: Inappropriate key specification
<br><br><br>------------------------------------------------------------------------------
<br>Come build with us! The BlackBerry® Developer Conference in SF, CA
<br>is the only developer event you need to attend this year. Jumpstart your
<br>developing skills, take BlackBerry mobile applications to market and stay
<br>ahead of the curve. Join us from November 9-12, 2009. Register now!
<br><a href="http://p.sf.net/sfu/devconf" target="_top" rel="nofollow">http://p.sf.net/sfu/devconf</a><br>_______________________________________________
<br>jasypt-users mailing list
<br><a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=25455283&i=0" target="_top" rel="nofollow">jasypt-users@...</a>
<br><a href="https://lists.sourceforge.net/lists/listinfo/jasypt-users" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/jasypt-users</a><br><p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-25397828Jasypt used with Java binding in eXist2009-09-11T02:28:40Z2009-09-11T02:28:40Zclaud108Hi,
<br><br>I am using Jasypt with Java binding in eXist. The script is:
<br><br>declare namespace criptare = "java:org.jasypt.encryption.pbe.StandardPBEStringEncryptor";
<br><br>let $constructorCriptare := criptare:new()
<br><br>let $adaugareParola := criptare:setPassword($constructorCriptare, 'password')
<br><br>let $textDeCriptat := 'text for encryption'
<br><br>return criptare:encrypt($constructorCriptare, 'text for encryption')
<br><br><br>But I got the following error:
<br>exception while calling constructor public org.jasypt.encryption.pbe.StandardPBEStringEncryptor(): null
<br><br>What do you think?
<br><br>Thanks,
<br>Claudius<p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-25349194Running on AS400 Java1.4 - Jasypt - ExceptionInInitializerError2009-09-08T09:07:07Z2009-09-08T09:07:07ZKPasseyHi I have put together a small text encryption test and it runs OK on my PC.
<br><br>When I export the same to my AS400 I get the following.
<br><br>org.jasypt.exceptions.EncryptionInitializationException: java.lang.ExceptionInInitializerError
<br> at java.lang.Throwable.<init>(Throwable.java:180)
<br> at java.lang.Exception.<init>(Exception.java:29)
<br> at java.lang.RuntimeException.<init>(RuntimeException.java:32)
<br> at org.apache.commons.lang.exception.NestableRuntimeException.<init>(NestableRuntimeException.java:73)
<br> at org.jasypt.exceptions.EncryptionInitializationException.<init>(EncryptionInitializationException.java:43)
<br> at org.jasypt.encryption.pbe.StandardPBEByteEncryptor.initialize(StandardPBEByteEncryptor.java:466)
<br> at org.jasypt.encryption.pbe.StandardPBEStringEncryptor.initialize(StandardPBEStringEncryptor.java:466)
<br> at com.sdip.adkcm.EncryptTest.main(EncryptTest.java:11)
<br>Caused by: java.lang.ExceptionInInitializerError
<br> at java.lang.Throwable.<init>(Throwable.java:180)
<br> at java.lang.Error.<init>(Error.java:37)
<br> at java.lang.ExceptionInInitializerError.<init>(ExceptionInInitializerError.java:61)
<br> at javax.crypto.SecretKeyFactory.getInstance(Unknown Source)
<br> ... 3 more
<br>Caused by: java.lang.SecurityException: Cannot set up certs for trusted CAs
<br> at java.lang.Throwable.<init>(Throwable.java:195)
<br> at java.lang.Exception.<init>(Exception.java:41)
<br> at java.lang.RuntimeException.<init>(RuntimeException.java:43)
<br> at java.lang.SecurityException.<init>(SecurityException.java:32)
<br> at javax.crypto.b.<clinit>(Unknown Source)
<br> ... 4 more
<br>Caused by: java.lang.SecurityException: Cannot locate policy or framework files!
<br> at java.lang.Throwable.<init>(Throwable.java:195)
<br> at java.lang.Exception.<init>(Exception.java:41)
<br> at java.lang.RuntimeException.<init>(RuntimeException.java:43)
<br> at java.lang.SecurityException.<init>(SecurityException.java:32)
<br> at javax.crypto.b.a(Unknown Source)
<br> at javax.crypto.b.g(Unknown Source)
<br> at javax.crypto.b£0.run(Unknown Source)
<br> ... 5 more
<br><br>Did I miss something - my env on the as400 is the same as the PC..
<br><br>Thanks
<br><br>Kev <p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-25211383Re: Encryption using command line2009-08-30T06:02:58Z2009-08-30T06:02:58Zclaud108Solved by installing java 1.6.
<br><blockquote class="quote light-black dark-border-color"><div class="quote light-border-color">
<div class="quote-author" style="font-weight: bold;">claud108 wrote:</div>
<div class="quote-message shrinkable-quote">Hi,
<br><br>I was using the command
<br>./encrypt.sh input="This is my message to be encrypted" password=MYPAS_WORD
<br><br>but I get the error
<br>----ERROR-----------------------
<br><br>java.lang.NoClassDefFoundError: com.ibm.icu.text.Normalizer
<br><br>I use debian lenny
<br><br>Thanks,
<br>Claudius
</div>
</div></blockquote>
<p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>tag:old.nabble.com,2006:post-24922436[SOLVED] Encryption using command line2009-08-11T10:46:04Z2009-08-30T06:03:59Zclaud108Hi,
<br><br>I was using the command
<br>./encrypt.sh input="This is my message to be encrypted" password=MYPAS_WORD
<br><br>but I get the error
<br>----ERROR-----------------------
<br><br>java.lang.NoClassDefFoundError: com.ibm.icu.text.Normalizer
<br><br>I use debian lenny
<br><br>Thanks,
<br>Claudius<p>From forum: <a href="http://old.nabble.com/Jasypt---Users-f21330.html" embed="fixTarget[21330]" target="_top" >Jasypt - Users</a></p>