EnhancedProtectionKey-v1.06.pdf Details

Document Details     TC Member Document View
Name * EnhancedProtectionKey-v1.06.pdf (246K)
Description v1.06 is an editorial improvement of v1.05, with important modifications to SHA1DK. The two new protection-key methods are still proposed to replace the current default and alternatives, with the explicitly-named ODF 1.2 alternatives identified as deprecated and not to be produced in ODF 1.3 documents.

AUTHZ160 does not depend on a hashing algorithm to match is value in order to authenticate removal of a protection.

SHA1DK is password based but it uses salt values and iterated hashing to make it far more costly to attempt to discover the password used by repeated trials. Passwords that are used should still be considered compromisable simply because the protection key, even though 320 bits, is still available in plain sight and subject to off-line attacks.

1. Rationale
1.1 Vulnerability of Password Hash Values
1.2 SHA1DK for Password-Based Protection-Key Values
1.3 AUTHZ160 for Password-Less Protection-Key Values

2. Proposed Changes

3. Deployment Considerations
3.1 Down-Level Considerations
3.2 Immediate Usabilty of AUTHZ160 for Default Protection
Keys
3.3 Confirmation of Resilient Down-Level Treatment
3.4 Future-Proofing of Extended ODF 1.2 Consumers and
Producers

[Note: In section 2, the separation of the iteration count from the cryptographically-random salt portion is made explicit. It is now possible to produce the count as the result of iterative hashing under a time constraint.]
Group OASIS Open Document Format for Office Applications (OpenDocument) TC
Folder Proposals
Submitter Mr. Dennis Hamilton
Date Submitted Friday, 03 May 2013 09:05am
Document State Draft (A preliminary unapproved sketch, outline, or version.)
Modified By Mr. Dennis Hamilton on Friday, 03 May 2013 09:06am
Access This document is visible to OASIS Open Document Format for Office Applications (OpenDocument) TC and shared with:
  • OASIS Open (General Membership)
  • General Public

Document Revisions
Name # State Submitter Date Action
7
Draft
Mr. Dennis Hamilton
2013-05-03
This doc
6
Draft
Mr. Dennis Hamilton
2013-05-03
5
Draft
Mr. Dennis Hamilton
2012-06-11
4
Draft
Mr. Dennis Hamilton
2012-06-11
3
Draft
Mr. Dennis Hamilton
2012-06-11
2
Draft
Mr. Dennis Hamilton
2011-09-24
1
Draft
Mr. Dennis Hamilton
2011-08-01
0
Draft
Mr. Dennis Hamilton
2011-07-11