What is salt in the HashProvider corporate library? (SaltEnabled Key)

Question

How is salt created in the HashProvider in the Microsoft Enterprise Library when we install SaltEnabled?

Is this random for new cars? Is this a magic number?

(I know what salt is, the question is what is the actual value of a / salt in the Enterprise Library HashProvider)

+3

Donidarkok Sep 24 '08 at 9:11

4 answers

Corbin March · Answer 1 · 2008-09-24T17:23:14+0000

Edit:

See Microsoft.Practices.EnterpriseLibrary.Security.Cryptography.HashAlgorithmProvider for an example implementation. The steps of the step are:

If SaltEnabled, generate random bytes for salt length using RNGCryptoServiceProvider.
Add salt to clear text.
Hash salty plain text.
( ) .

:

public bool CompareHash(byte[] plaintext, byte[] hashedtext)

. , , .

CompareHash :

:

", HashProvider, , . unhashed, unhashed ."

" -, . . , , unhashed-value , . "

Andrei Rînea · Answer 2 · 2008-10-05T23:19:49+0000

offtopic:

Rainbow. , , (/ ) .

, :

xr280xr · Answer 3 · 2010-12-15T20:18:48+0000

, , , , , .

Gareth stephenson · Answer 4 · 2014-12-02T10:56:02+0000

, .

:

16 .
It is created using a method CryptographyUtility.GetRandomBytes(16);in the namespace Microsoft.Practices.EnterpriseLibrary.Security.Cryptography. This ultimately calls the C library method called[DllImport("QCall", CharSet = CharSet.Unicode)] private static extern void GetBytes(SafeProvHandle hProv, byte[] randomBytes, int count);
The first 16 bytes of the encoded Base64 is the salt that was used to hash the original value