Basic PBE questions and clarifications
843811Jul 7 2009 — edited Jul 7 2009I have some basic questions about PBE and java.
My first question is how do I determine the size of the derived key that will actually be used? Do we have any control over that? I guess that the password strength is probably more important than size of derived key in PBE(?), but I'd still like to understand what's happening.
Following on that - do the characteristics of the initial PBE password have any bearing on the strength of the encryption (ie the size of the derived key), when using PBE?
Finally with standard install of Sun 1.5 JRE, the security jurisdication policy files prohibit the use of PBEWithMD5AndTripleDES. However the Sun JDK from 1.5 supports PBEWithSHA1AndDESede and this appears to work with the standard (strong), policy files.
This being the case (and please correct if this is wrong), what is the difference between TripleDES and DESede - I thought they were analogous. Why is one PBE scheme available with standard (strong), 1.5 policy files and the other prohibited?