Verbesserung login speed und sicherheit durch randomisierung der iterationssschritte

2022-02-01 16:17:59 +01:00
parent c365e628fc
commit d70f989a3b
5 changed files with 2473 additions and 2440 deletions
--- a/App_Code/TestPerformance.vb
+++ b/App_Code/TestPerformance.vb
@@ -178,9 +178,9 @@ Public Class TestPerformance
        For zahl As Integer = 0 To zahlint
            sw1.Start()
            If HttpContext.Current.Request.ServerVariables("SERVER_NAME") = "localhost" Then
-                hashsalts.Add(VERAG_VARIABLES.GenerateSalt(VERAG_VARIABLES.RandomInteger(95, 254)))
+                hashsalts.Add(VERAG_VARIABLES.GenerateSalt(VERAG_VARIABLES.RandomInteger(95, 104)))
            Else
-                hashsalts.Add(VERAG_VARIABLES.GenerateSalt(VERAG_VARIABLES.RandomInteger(95, 365)))
+                hashsalts.Add(VERAG_VARIABLES.GenerateSalt(VERAG_VARIABLES.RandomInteger(95, 105)))
            End If
            arrzahl_iterats.Add(VERAG_VARIABLES.RandomInteger(25, 45))
            arrzahl.Add(zahlint)
@@ -192,7 +192,7 @@ Public Class TestPerformance
        If HttpContext.Current.Request.ServerVariables("SERVER_NAME") = "localhost" Then
            pw = "PasswordV$S" + VERAG_VARIABLES.RandomInteger(115, 120 + (zahlint - 5)).ToString + "!!%"
        Else
-            pw = "&WAS5$WdA&" + VERAG_VARIABLES.RandomInteger(VERAG_VARIABLES.RandomInteger(120, 512), VERAG_VARIABLES.RandomInteger(300, 8423) + (zahlint - VERAG_VARIABLES.RandomInteger(5, 17))).ToString + "#*p(=+UY"
+            pw = "&WAS5$WdA&" + VERAG_VARIABLES.RandomInteger(VERAG_VARIABLES.RandomInteger(120, 512), VERAG_VARIABLES.RandomInteger(300, Math.Pow(2, 13) + (zahlint - VERAG_VARIABLES.RandomInteger(5, 17))).ToString + "#*p(=+UY")
        End If
        For zahl As Integer = 0 To zahlint
            sw2.Start()