WebSphere Application Server supports the use of custom
password encryption.
Before you begin
An installation can implement any password encryption algorithm
it chooses.
About this task
Complete the following steps to implement custom password
encryption:
Procedure
- Build your custom password encryption class. An
example of a custom password encryption class follows.
// CustomPasswordEncryption
// Encryption and decryption functions
public interface CustomPasswordEncryption {
public EncryptedInfo encrypt(byte[] clearText) throws PasswordEncryptException;
public byte[] decrypt(EncryptedInfo cipherTextInfo) throws PasswordEncryptException;
public void initialize(HashMap initParameters);
};
// Encapsulation of cipher text and label
public class EncryptedInfo {
public EncryptedInfo(byte[] bytes, String keyAlias);
public byte[] getEncryptedBytes();
public String getKeyAlias();
};
- Enable custom password encryption.
- Set the custom property com.ibm.wsspi.security.crypto.customPasswordEncryptionClass to
the name of the class that is to be given control.
- Enable the function. Set the custom property, com.ibm.wsspi.security.crypto.customPasswordEncryptionEnabled to true.
Results
Custom password encryption at the installation is complete.