Skip to main content
This forum is closed to new posts and responses. New discussions are now taking place in the IBM Developer Answers forum.
 
developerWorks
AIX and UNIX
Information Mgmt
Lotus
New to Lotus
Products
How to buy
Downloads
Live demos
Technical library
Training
Support
Forums & community
Events
Rational
Tivoli
WebSphere
Java™ technology
Linux
Open source
SOA and Web services
Web development
XML
My developerWorks
About dW
Submit content
Feedback



developerWorks  >  Lotus  >  Forums & community  >  Notes/Domino 6 and 7 Forum

Notes/Domino 6 and 7 Forum

developerWorks

  

PreviousPrevious NextNext

RE: get id password
Stan Rogers 24.Jan.14 03:28 PM a Web browser
Applications Development 6.5.6 Windows 2003


Not quite. The password isn't stored anywhere. Your password is used to generate an encryption key, which is then used to decrypt certain credentials within the ID file. (The same key will have been used to encrypt the content of the file when you set or changed the password.) Notes "knows" you've used the right password when it tries to decrypt the file and a couple of known bytes have the correct value. The "recovery" tools won't find out what the actual password is; they provide a big, long and ugly alternate value that will generate the same decryption key as the password would have* so that the user can re-encrypt the file with a new password.

*With any hashing or key-derivation function with an output of fixed length, there will be infinitely many possible inputs that provide a given output. If a social security number were only 6 digits long, for instance, then after you hit a million people, all of the possible combinations from 000000 to 999999 will have been assigned, and you're going to have duplicate numbers even though the people they represent are different. You can't actually undo a hash or a KDF to get to the original value, but if you have some value that represents part of the work, you can work backwards to A value (as opposed to THE value) that will work out to the same result. The exact implementation isn't public, but my guess would be that access to that necessary partial result is restricted by Shamir-type shared secret encryption.




get id password (Luciana Soar 15.Jan.14)
. . no (Mark Taylor 15.Jan.14)
. . RE: get id password (Richard Minor 24.Jan.14)
. . . . RE: get id password (Stan Rogers 24.Jan.14)


Document Options






  Document options
Print this pagePrint this page

Search this forum

Forum views and search


  Forum views and search
Date (threaded)
Date (flat)
With excerpt
Author
Category
Platform
Release
Advanced search

Member Tools


RSS Feeds

 RSS feedsRSS
All forum posts RSS
All main topics RSS
More Lotus RSS feeds

Resources

 Resources
Forum use and etiquette
Native Notes Access
Web site Feedback

Lotus Support

 Lotus Support
IBM Support Portal - Lotus software
Lotus Support documents
Lotus support by product
Lotus support downloads
Lotus support RSS feeds

Wikis

 Wikis
IBM Composite Applications
IBM Mashup Center
IBM Connections
IBM Connections Cloud Developers
IBM Docs
IBM Forms
IBM Mobile Connect
IBM Sametime
IBM SmartCloud for Social Business
IBM Web Experience Factory
Lotus Domino
Lotus Domino Designer
Lotus Expeditor
Lotus Foundations
Lotus iNotes
Lotus Instructor Community Courseware
Lotus Notes
Lotus Notes & Domino Application Development
Lotus Notes Traveler
Lotus Protector
Lotus Quickr
Lotus Symphony
IBM Web Content Manager
WebSphere Portal

Lotus Forums


 Lotus Forums
Notes/Domino 9.0
Notes/Domino 8.5 + Traveler
Notes/Domino XPages development forum
Notes/Domino 8
Notes/Domino 6 and 7
IBM Connections
IBM Mobile Connect
IBM Sametime
IBM SmartCloud Notes
Lotus Enterprise Integration
Lotus Protector
Lotus Quickr
Lotus SmartSuite