For Microsoft.AspNetCore.Identity
:
When PasswordHasherOptions.IterationCount
is < 100,000, highlight the IterationCount attribute.
When PasswordHasherOptions.CompatibilityMode
is set to PasswordHasherCompatibilityMode.IdentityV2
, highlight the
corresponding attribute.
For Microsoft.AspNetCore.Cryptography.KeyDerivation
:
When KeyDerivation.Pbkdf2
is called with iterationCount
< 100,000, highlight the iterationCount parameter.
For System.Security.Cryptography
:
When Rfc2898DeriveBytes is instantiated with an iterations
parameter < 100,000, highlight the iterations parameter.
When Rfc2898DeriveBytes is instantiated without a hashAlgorithm
parameter highlight the whole constructor call.
For Microsoft.AspNet.Identity
:
When a PasswordHasher
is instantiated highlight the constructor.
For System.Security.Cryptography
:
When Rfc2898DeriveBytes is instantiated with an iterations
parameter < 100,000 or
when Rfc2898DeriveBytes.Pbkdf2 is called with an iterations
parameter < 100,000, highlight the iterations parameter.
When Rfc2898DeriveBytes is instantiated without a hashAlgorithm
parameter highlight the whole constructor call.
For Org.BouncyCastle.Crypto.Generators.OpenBsdBCrypt
, or Org.BouncyCastle.Crypto.Generators.BCrypt
:
When Generate
is called with cost < 12, highlight the cost parameter.
For Org.BouncyCastle.Crypto.PbeParametersGenerator
:
When Init
is called with iterationCount
< 100,000, highlight the iteration count parameter.
For Org.BouncyCastle.Crypto.Generators.SCrypt
:
When Generate
is called with N < 2^12, r < 8, or dklen < 32, highlight the weak parameter.