SlideShare a Scribd company logo

PBKDF2: Storing Sensitive Data Securely in Android Applications

Download as PPTX, PDF
S
Shiv Sahni

The document discusses the PBKDF2 algorithm for secure data storage in Android applications, emphasizing the importance of using a strong key derivation function to protect sensitive information from brute-force attacks. It highlights best practices such as avoiding weak cryptographic algorithms, implementing a strong password policy, and ensuring proper key management. Additionally, it provides a code snippet for generating a secure encryption key using PBKDF2.

Technology
Related topics:
Information Security Secure DevelopmentMobile Security Insights
1 of 16
Downloaded 21 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
Applications of PBKDF2 Algorithm in Android Application Secure Data Storage Shiv Sahni Sr. Security Analyst Confidential
What is PBKDF? PBKDF2 applies a pseudorandom function, such as hash-based message authentication code (HMAC), to the input password or passphrase along with a salt value and repeats the process many times to produce a derived key, which can then be used as a cryptographic key in subsequent operations.
The Process! The PBKDF2 key derivation function has five input parameters: DK = PBKDF2(PRF, Password, Salt, c, dkLen) where: ● PRF is a pseudorandom function (e.g. a keyed HMAC) ● Password is the master password from which a derived key is generated ● Salt is a sequence of bits, known as a cryptographic salt ● c is the number of iterations desired ● dkLen is the desired length of the derived key ● DK is the generated derived key
Why PBKDF? ● The algorithm is designed to increase the computation cost so as to prevent Brute-force Attacks.
Usage? ● Key Derivation Functions ● Password Hashing
Hashing -> Salted Hashes->PBKDF Salts are added so as to increase the computation requirements for cracking the hashes. PBKDF makes it more complex.
Storing Sensitive Data Securely in Local Data Storage of Android Applications
Attacker Can Not Reach to Private Data Directory?? The Android sandbox for application data is not enough to create a truly secure application. ● File System Misconfiguration ● Exploitation
The Sensitive Data is Actually Required? Think Again! It is recommended that the application should not capture unnecessary sensitive data. Only the required sensitive data should be captured and should be securely handled.
Not Just Encrypt it - SECURELY ENCRYPT IT! ● Say no to custom encryption algorithm. ● Avoid usage of weak cryptographic algorithms ○ Weak Encryption Algorithms: DES, 3DES, AES (ECB Mode) etc. ○ Weak Hashing Algorithms: RC4, MD5, SHA-1 etc. ○ Insecure Random Number Generators: Usage of java.util.Random for random number generation. ● Poor Key Management ○ Hardcoded Encryption Keys ○ Storing Keys with Ciphertext Locally
Do we have pin/password/passphrase implementation? If the application requires password for authentication then ● Use user supplied password should be used to derive encryption key via a key derivation function such as PBKDF2. ● The encryption key can be derived at the time of registration/first login and can be used to encrypt sensitive data. ● The same key can be used to decrypt sensitive data whenever correct password is supplied.
Not Just Encryption - Secure Encryption ● The application must have Strong Password Policy to prevent decryption of sensitive data through brute-force attacks. ● Use Key Derivation Function with 10,000 or more rounds of iteration so as to make brute-force attacks expensive.
Code Snippet public static SecretKey generateKey(char[] passphraseOrPin, byte[] salt) throws NoSuchAlgorithmException, InvalidKeySpecException { // Number of PBKDF2 hardening rounds to use. Larger values increase // computation time. You should select a value that causes computation // to take >100ms. final int iterations = 1000; // Generate a 256-bit key final int outputKeyLength = 256; SecretKeyFactory secretKeyFactory = SecretKeyFactory.getInstance("PBKDF2WithHmacSHA1"); KeySpec keySpec = new PBEKeySpec(passphraseOrPin, salt, iterations, outputKeyLength); SecretKey secretKey = secretKeyFactory.generateSecret(keySpec); return secretKey; } Reference:android-developers.googleblog.com
Example: AES Encryption and Decryption Reference: https://gist.github.com/dweymouth/11089238
References ● The Mobile Application Hacker’s Handbook ● Wikipedia (https://en.wikipedia.org/) ● Android Developers Blogs (http://android-developers.blogspot.com)
PBKDF2: Storing Sensitive Data Securely in Android Applications

More Related Content

PPT
Lezione linguaggio teorie e sviluppo
imartini
 
PDF
Comunicazione efficace: principi e tecniche di base
PLS Coaching
 
PDF
Meeting 5.2 : ssh
Syaiful Ahdan
 
PPT
Public speaking
Giacomo Mason
 
PPTX
Comunicazione efficace
Maristella Carnio
 
PPT
bullimo lezione
imartini
 
PDF
L' AUTOSTIMA
studiopellegrino_psicosomatica
 
PDF
Dispense lezione 21 apprendimento-4 dicembre
imartini
 
Lezione linguaggio teorie e sviluppo
imartini
 
Comunicazione efficace: principi e tecniche di base
PLS Coaching
 
Meeting 5.2 : ssh
Syaiful Ahdan
 
Public speaking
Giacomo Mason
 
Comunicazione efficace
Maristella Carnio
 
bullimo lezione
imartini
 
L' AUTOSTIMA
studiopellegrino_psicosomatica
 
Dispense lezione 21 apprendimento-4 dicembre
imartini
 

What's hot (12)

PPT
Diffie-hellman algorithm
Computer_ at_home
 
PDF
Abilità sociali
imartini
 
PPT
Operational Risk & Basel Ii
jhsiddiqi2003
 
PPT
Tecniche di comunicazione
iva martini
 
PPT
Vygotskij
iva martini
 
PDF
Blind Signature Scheme
Kelum Senanayake
 
PPTX
Intelligenza emotiva slideshare
Giorgia Pizzuti
 
PDF
Autostima nell'Islam - "Il segreto è avere fiducia in se stessi" - GMI - Roma
Md Fayruj Islam Durrani
 
ODP
Emotions in Multi-Agent Based Simulation
geko
 
PPTX
Salute mentale giu
Dina Malgieri
 
PPT
7. l empatia_nell_adolescenza
iva martini
 
PDF
Adolescenti e i segnali del disagio
Emanuele Palagi
 
Diffie-hellman algorithm
Computer_ at_home
 
Abilità sociali
imartini
 
Operational Risk & Basel Ii
jhsiddiqi2003
 
Tecniche di comunicazione
iva martini
 
Vygotskij
iva martini
 
Blind Signature Scheme
Kelum Senanayake
 
Intelligenza emotiva slideshare
Giorgia Pizzuti
 
Autostima nell'Islam - "Il segreto è avere fiducia in se stessi" - GMI - Roma
Md Fayruj Islam Durrani
 
Emotions in Multi-Agent Based Simulation
geko
 
Salute mentale giu
Dina Malgieri
 
7. l empatia_nell_adolescenza
iva martini
 
Adolescenti e i segnali del disagio
Emanuele Palagi
 
Ad

Similar to PBKDF2: Storing Sensitive Data Securely in Android Applications (20)

PDF
Strong cryptography in PHP
Enrico Zimuel
 
PDF
Cryptography with Zend Framework
Enrico Zimuel
 
PDF
Secure Your Encryption with HSM
Narudom Roongsiriwong, CISSP
 
PDF
Password (in)security
Enrico Zimuel
 
PDF
Cryptography in PHP: Some Use Cases
Zend by Rogue Wave Software
 
PPTX
CryptoGraphy Module in Mulesoft
shyamraj55
 
PPTX
Cryptography 101
Aditya Kamat
 
PPT
Secure Mail Application's by Ashok Panwar
Ashok Panwar
 
PDF
Consulthink @ GDG Meets U - L'Aquila2014 - Codelab: Android Security -Il ke...
Consulthinkspa
 
PDF
How to Use Cryptography Properly: The Common Mistakes People Make When Using ...
POSSCON
 
PPTX
Data Security Essentials - JavaOne 2013
javagroup2006
 
PDF
Unit 3 RSA for cryptography and cybersecurity
dharsanvijay1
 
PPTX
Unit-III_3R-CRYPTO_2021-22_VSM.pptx
VishwanathMahalle
 
PDF
Passwords good badugly181212-2
Iftach Ian Amit
 
PDF
Encrypted Negative Password using for Authentication
ijtsrd
 
PPTX
Crypto failures every developer should avoid
Filip Šebesta
 
PPTX
Crypto failures every developer should avoid
OwaspCzech
 
PDF
From Java 17 to 21- A Showcase of JDK Security Enhancements
Ana-Maria Mihalceanu
 
PPTX
Digitalsignature&protocol Cryptographycss
PriyankaPatil919748
 
PPTX
Crypography in c#
Manu Cohen-Yashar
 
Strong cryptography in PHP
Enrico Zimuel
 
Cryptography with Zend Framework
Enrico Zimuel
 
Secure Your Encryption with HSM
Narudom Roongsiriwong, CISSP
 
Password (in)security
Enrico Zimuel
 
Cryptography in PHP: Some Use Cases
Zend by Rogue Wave Software
 
CryptoGraphy Module in Mulesoft
shyamraj55
 
Cryptography 101
Aditya Kamat
 
Secure Mail Application's by Ashok Panwar
Ashok Panwar
 
Consulthink @ GDG Meets U - L'Aquila2014 - Codelab: Android Security -Il ke...
Consulthinkspa
 
How to Use Cryptography Properly: The Common Mistakes People Make When Using ...
POSSCON
 
Data Security Essentials - JavaOne 2013
javagroup2006
 
Unit 3 RSA for cryptography and cybersecurity
dharsanvijay1
 
Unit-III_3R-CRYPTO_2021-22_VSM.pptx
VishwanathMahalle
 
Passwords good badugly181212-2
Iftach Ian Amit
 
Encrypted Negative Password using for Authentication
ijtsrd
 
Crypto failures every developer should avoid
Filip Šebesta
 
Crypto failures every developer should avoid
OwaspCzech
 
From Java 17 to 21- A Showcase of JDK Security Enhancements
Ana-Maria Mihalceanu
 
Digitalsignature&protocol Cryptographycss
PriyankaPatil919748
 
Crypography in c#
Manu Cohen-Yashar
 
Ad

Recently uploaded (20)

PDF
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
PDF
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
DOCX
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
PDF
Assigned Numbers - 2025 - Bluetooth® Document
Bloombase
 
PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PPTX
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
PDF
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
PDF
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
PDF
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
PPTX
sap open course for s4hana steps from ECC to s4
sreeni2106invites
 
PDF
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
PDF
A comparative analysis of optical character recognition models for extracting...
IAESIJAI
 
PDF
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
PPTX
A Presentation on Artificial Intelligence
memembruh336
 
PPTX
Cloud computing and distributed systems.
kkkkkhan
 
PDF
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
PPTX
ACSFv1EN-58255 AWS Academy Cloud Security Foundations.pptx
23bcla24
 
PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PDF
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
Assigned Numbers - 2025 - Bluetooth® Document
Bloombase
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
sap open course for s4hana steps from ECC to s4
sreeni2106invites
 
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
A comparative analysis of optical character recognition models for extracting...
IAESIJAI
 
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
A Presentation on Artificial Intelligence
memembruh336
 
Cloud computing and distributed systems.
kkkkkhan
 
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
ACSFv1EN-58255 AWS Academy Cloud Security Foundations.pptx
23bcla24
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 

PBKDF2: Storing Sensitive Data Securely in Android Applications

  • 1. Applications of PBKDF2 Algorithm in Android Application Secure Data Storage Shiv Sahni Sr. Security Analyst Confidential
  • 2. What is PBKDF? PBKDF2 applies a pseudorandom function, such as hash-based message authentication code (HMAC), to the input password or passphrase along with a salt value and repeats the process many times to produce a derived key, which can then be used as a cryptographic key in subsequent operations.
  • 3. The Process! The PBKDF2 key derivation function has five input parameters: DK = PBKDF2(PRF, Password, Salt, c, dkLen) where: ● PRF is a pseudorandom function (e.g. a keyed HMAC) ● Password is the master password from which a derived key is generated ● Salt is a sequence of bits, known as a cryptographic salt ● c is the number of iterations desired ● dkLen is the desired length of the derived key ● DK is the generated derived key
  • 4. Why PBKDF? ● The algorithm is designed to increase the computation cost so as to prevent Brute-force Attacks.
  • 5. Usage? ● Key Derivation Functions ● Password Hashing
  • 6. Hashing -> Salted Hashes->PBKDF Salts are added so as to increase the computation requirements for cracking the hashes. PBKDF makes it more complex.
  • 7. Storing Sensitive Data Securely in Local Data Storage of Android Applications
  • 8. Attacker Can Not Reach to Private Data Directory?? The Android sandbox for application data is not enough to create a truly secure application. ● File System Misconfiguration ● Exploitation
  • 9. The Sensitive Data is Actually Required? Think Again! It is recommended that the application should not capture unnecessary sensitive data. Only the required sensitive data should be captured and should be securely handled.
  • 10. Not Just Encrypt it - SECURELY ENCRYPT IT! ● Say no to custom encryption algorithm. ● Avoid usage of weak cryptographic algorithms ○ Weak Encryption Algorithms: DES, 3DES, AES (ECB Mode) etc. ○ Weak Hashing Algorithms: RC4, MD5, SHA-1 etc. ○ Insecure Random Number Generators: Usage of java.util.Random for random number generation. ● Poor Key Management ○ Hardcoded Encryption Keys ○ Storing Keys with Ciphertext Locally
  • 11. Do we have pin/password/passphrase implementation? If the application requires password for authentication then ● Use user supplied password should be used to derive encryption key via a key derivation function such as PBKDF2. ● The encryption key can be derived at the time of registration/first login and can be used to encrypt sensitive data. ● The same key can be used to decrypt sensitive data whenever correct password is supplied.
  • 12. Not Just Encryption - Secure Encryption ● The application must have Strong Password Policy to prevent decryption of sensitive data through brute-force attacks. ● Use Key Derivation Function with 10,000 or more rounds of iteration so as to make brute-force attacks expensive.
  • 13. Code Snippet public static SecretKey generateKey(char[] passphraseOrPin, byte[] salt) throws NoSuchAlgorithmException, InvalidKeySpecException { // Number of PBKDF2 hardening rounds to use. Larger values increase // computation time. You should select a value that causes computation // to take >100ms. final int iterations = 1000; // Generate a 256-bit key final int outputKeyLength = 256; SecretKeyFactory secretKeyFactory = SecretKeyFactory.getInstance("PBKDF2WithHmacSHA1"); KeySpec keySpec = new PBEKeySpec(passphraseOrPin, salt, iterations, outputKeyLength); SecretKey secretKey = secretKeyFactory.generateSecret(keySpec); return secretKey; } Reference:android-developers.googleblog.com
  • 14. Example: AES Encryption and Decryption Reference: https://gist.github.com/dweymouth/11089238
  • 15. References ● The Mobile Application Hacker’s Handbook ● Wikipedia (https://en.wikipedia.org/) ● Android Developers Blogs (http://android-developers.blogspot.com)