password-2.1.1.0: Hashing and checking of passwords
Copyright(c) Felix Paulusma 2020
LicenseBSD-style (see LICENSE file)
Maintainercdep.illabout@gmail.com
Stabilityexperimental
PortabilityPOSIX
Safe HaskellNone
LanguageHaskell2010

Data.Password.PBKDF2

Description

PBKDF2

The PBKDF2 algorithm is one of the oldest and most solid password algorithms out there. It has also, however, been shown to be the least secure out of all major password algorithms. The main reason for this is that it doesn't make use of any memory cost or other method of making it difficult for specialized hardware attacks, like GPU cracking attacks.

It is still, however, used all over the world, since it has been shown to be a very reliable way to encrypt passwords. And it is most definitely better than trying to develop a password algorithm on your own, or god-forbid, not using any encryption on your stored passwords.

Other algorithms

Seeing as PBKDF2 is shown to be very weak in terms of protection against GPU cracking attacks, it is generally advised to go with Bcrypt, if not Scrypt or Argon2. When unsure, Bcrypt would probably be the safest option, as it has no memory cost which could become a problem if not properly calibrated to the machine doing the password verifications.

Synopsis

Documentation

data PBKDF2 Source #

Phantom type for PBKDF2

Since: 2.0.0.0

Plain-text Password

data Password Source #

A plain-text password.

This represents a plain-text password that has NOT been hashed.

You should be careful with Password. Make sure not to write it to logs or store it in a database.

You can construct a Password by using the mkPassword function or as literal strings together with the OverloadedStrings pragma (or manually, by using fromString on a String). Alternatively, you could also use some of the instances in the password-instances library.

Instances

Instances details
Show Password Source #

CAREFUL: Show-ing a Password will always print "**PASSWORD**"

>>> show ("hello" :: Password)
"**PASSWORD**"

Since: 1.0.0.0

Instance details

Defined in Data.Password.Internal

Methods

showsPrec :: Int -> Password -> ShowS #

show :: Password -> String #

showList :: [Password] -> ShowS #

IsString Password Source # 
Instance details

Defined in Data.Password.Internal

Methods

fromString :: String -> Password #

mkPassword :: Text -> Password Source #

Construct a Password

Since: 1.0.0.0

Hash Passwords (PBKDF2)

hashPassword :: MonadIO m => Password -> m (PasswordHash PBKDF2) Source #

Hash the Password using the PBKDF2 hash algorithm

>>> hashPassword $ mkPassword "foobar"
PasswordHash {unPasswordHash = "sha512:25000:...:..."}

newtype PasswordHash a Source #

A hashed password.

This represents a password that has been put through a hashing function. The hashed password can be stored in a database.

Constructors

PasswordHash 

Fields

Instances

Instances details
Eq (PasswordHash a) Source # 
Instance details

Defined in Data.Password.Internal

Methods

(==) :: PasswordHash a -> PasswordHash a -> Bool #

(/=) :: PasswordHash a -> PasswordHash a -> Bool #

Ord (PasswordHash a) Source # 
Instance details

Defined in Data.Password.Internal

Methods

compare :: PasswordHash a -> PasswordHash a -> Ordering #

(<) :: PasswordHash a -> PasswordHash a -> Bool #

(<=) :: PasswordHash a -> PasswordHash a -> Bool #

(>) :: PasswordHash a -> PasswordHash a -> Bool #

(>=) :: PasswordHash a -> PasswordHash a -> Bool #

max :: PasswordHash a -> PasswordHash a -> PasswordHash a #

min :: PasswordHash a -> PasswordHash a -> PasswordHash a #

Read (PasswordHash a) Source # 
Instance details

Defined in Data.Password.Internal

Methods

readsPrec :: Int -> ReadS (PasswordHash a) #

readList :: ReadS [PasswordHash a] #

readPrec :: ReadPrec (PasswordHash a) #

readListPrec :: ReadPrec [PasswordHash a] #

Show (PasswordHash a) Source # 
Instance details

Defined in Data.Password.Internal

Methods

showsPrec :: Int -> PasswordHash a -> ShowS #

show :: PasswordHash a -> String #

showList :: [PasswordHash a] -> ShowS #

Verify Passwords (PBKDF2)

checkPassword :: Password -> PasswordHash PBKDF2 -> PasswordCheck Source #

Check a Password against a PasswordHash PBKDF2.

Returns PasswordCheckSuccess on success.

>>> let pass = mkPassword "foobar"
>>> passHash <- hashPassword pass
>>> checkPassword pass passHash
PasswordCheckSuccess

Returns PasswordCheckFail if an incorrect Password or PasswordHash PBKDF2 is used.

>>> let badpass = mkPassword "incorrect-password"
>>> checkPassword badpass passHash
PasswordCheckFail

This should always fail if an incorrect password is given.

\(Blind badpass) -> let correctPasswordHash = hashPasswordWithSalt testParams salt "foobar" in checkPassword badpass correctPasswordHash == PasswordCheckFail

data PasswordCheck Source #

The result of checking a password against a hashed version. This is returned by the checkPassword functions.

Constructors

PasswordCheckSuccess

The password check was successful. The plain-text password matches the hashed password.

PasswordCheckFail

The password check failed. The plain-text password does not match the hashed password.

Instances

Instances details
Eq PasswordCheck Source # 
Instance details

Defined in Data.Password.Internal

Methods

(==) :: PasswordCheck -> PasswordCheck -> Bool #

(/=) :: PasswordCheck -> PasswordCheck -> Bool #

Read PasswordCheck Source # 
Instance details

Defined in Data.Password.Internal

Methods

readsPrec :: Int -> ReadS PasswordCheck #

readList :: ReadS [PasswordCheck] #

readPrec :: ReadPrec PasswordCheck #

readListPrec :: ReadPrec [PasswordCheck] #

Show PasswordCheck Source # 
Instance details

Defined in Data.Password.Internal

Methods

showsPrec :: Int -> PasswordCheck -> ShowS #

show :: PasswordCheck -> String #

showList :: [PasswordCheck] -> ShowS #

Hashing Manually (PBKDF2)

hashPasswordWithParams :: MonadIO m => PBKDF2Params -> Password -> m (PasswordHash PBKDF2) Source #

Hash a password using the PBKDF2 algorithm with the given PBKDF2Params.

N.B.: If you have any doubt in your knowledge of cryptography and/or the PBKDF2 algorithm, please just use hashPassword.

Since: 2.0.0.0

defaultParams :: PBKDF2Params Source #

Default parameters for the PBKDF2 algorithm.

>>> defaultParams
PBKDF2Params {pbkdf2Salt = 16, pbkdf2Algorithm = PBKDF2_SHA512, pbkdf2Iterations = 25000, pbkdf2OutputLength = 64}

Since: 2.0.0.0

data PBKDF2Params Source #

Parameters used in the PBKDF2 hashing algorithm.

Since: 2.0.0.0

Constructors

PBKDF2Params 

Fields

Instances

Instances details
Eq PBKDF2Params Source # 
Instance details

Defined in Data.Password.PBKDF2

Methods

(==) :: PBKDF2Params -> PBKDF2Params -> Bool #

(/=) :: PBKDF2Params -> PBKDF2Params -> Bool #

Show PBKDF2Params Source # 
Instance details

Defined in Data.Password.PBKDF2

Methods

showsPrec :: Int -> PBKDF2Params -> ShowS #

show :: PBKDF2Params -> String #

showList :: [PBKDF2Params] -> ShowS #

data PBKDF2Algorithm Source #

Type of algorithm to use for hashing PBKDF2 passwords.

N.B.: PBKDF2_MD5 and PBKDF2_SHA1 are not considered very secure.

Constructors

PBKDF2_MD5 
PBKDF2_SHA1 
PBKDF2_SHA256 
PBKDF2_SHA512 

Instances

Instances details
Eq PBKDF2Algorithm Source # 
Instance details

Defined in Data.Password.PBKDF2

Methods

(==) :: PBKDF2Algorithm -> PBKDF2Algorithm -> Bool #

(/=) :: PBKDF2Algorithm -> PBKDF2Algorithm -> Bool #

Show PBKDF2Algorithm Source # 
Instance details

Defined in Data.Password.PBKDF2

Methods

showsPrec :: Int -> PBKDF2Algorithm -> ShowS #

show :: PBKDF2Algorithm -> String #

showList :: [PBKDF2Algorithm] -> ShowS #

Hashing with salt (DISADVISED)

Hashing with a set Salt is almost never what you want to do. Use hashPassword or hashPasswordWithParams to have automatic generation of randomized salts.

hashPasswordWithSalt :: PBKDF2Params -> Salt PBKDF2 -> Password -> PasswordHash PBKDF2 Source #

Hash a password with the given PBKDF2Params and also with the given Salt instead of a randomly generated salt using pbkdf2Salt from PBKDF2Params. (cf. hashPasswordWithParams) Using hashPasswordWithSalt is strongly disadvised and hashPasswordWithParams should be used instead. Never use a static salt in production applications!

>>> let salt = Salt "abcdefghijklmnop"
>>> hashPasswordWithSalt defaultParams salt (mkPassword "foobar")
PasswordHash {unPasswordHash = "sha512:25000:YWJjZGVmZ2hpamtsbW5vcA==:JRElYYrOMe9OIV4LDxaLTgO9ho8fFBVofXoQcdngi7AcuH6Amvmlj2B0y6y1UtQciXXBepSCS+rpy8/vDDQvoA=="}

(Note that we use an explicit Salt in the example above. This is so that the example is reproducible, but in general you should use hashPassword. hashPassword (and hashPasswordWithParams) generates a new Salt everytime it is called.)

newSalt :: MonadIO m => m (Salt PBKDF2) Source #

Generate a random 16-byte PBKDF2 salt

Since: 2.0.0.0

newtype Salt a Source #

A salt used by a hashing algorithm.

Since: 2.0.0.0

Constructors

Salt ByteString 

Instances

Instances details
Eq (Salt a) Source # 
Instance details

Defined in Data.Password.Internal

Methods

(==) :: Salt a -> Salt a -> Bool #

(/=) :: Salt a -> Salt a -> Bool #

Show (Salt a) Source # 
Instance details

Defined in Data.Password.Internal

Methods

showsPrec :: Int -> Salt a -> ShowS #

show :: Salt a -> String #

showList :: [Salt a] -> ShowS #

Unsafe debugging function to show a Password

unsafeShowPassword :: Password -> Text Source #

This is an unsafe function that shows a password in plain-text.

>>> unsafeShowPassword ("foobar" :: Password)
"foobar"

You should generally not use this function.

Setup for doctests.

>>> :set -XFlexibleInstances
>>> :set -XOverloadedStrings

Import needed libraries.

>>> import Data.Password
>>> import Data.ByteString (pack)
>>> import Test.QuickCheck (Arbitrary(arbitrary), Blind(Blind), vector)
>>> import Test.QuickCheck.Instances.Text ()

>>> instance Arbitrary (Salt a) where arbitrary = Salt . pack <$> vector 16
>>> instance Arbitrary Password where arbitrary = fmap Password arbitrary
>>> let testParams = defaultParams{ pbkdf2Iterations = 5000 }
>>> let salt = Salt "abcdefghijklmnop"