Password-based KDF2 (PBKDF2) is widely used in file authentication mechanism and file encryption which could produce a derived key more than 160 bits long. In this paper, the security of PBKDF2 algorithm and its implementation in OpenOffice are analyzed in two modes: CSP-secure mode (Chosen Single Parameter) and CMP-secure mode (Chosen Multiple Parameters). The theoretical security of PBKDF2 is proved in CSP-secure mode by using Game-Playing technology to quantify the upper bound of adversary's advantage. However, a security flaw is explored in CMP-secure mode. This paper presents three proposals to address the security flaw. With the theoretical derivation, the actual safety of the OpenOffice encrypted file has been discussed under the latest developments for GPU-accelerated key recovery attack capability.
scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.