Managing master keys used in PBKDF2 and HMAC (store, rotate)

Mohamed Waleed

11/28/22, 9:58 PM

My use case:

I have few master keys, I use each for a specific operation (e.g. one for encrypting user's data and another for creating JWT signatures etc...).

I use these master keys in two specific things:

in PBKDF2 as an input + a salt to derive symmetric keys and nonces (iv) and, then store the salt only with the ciphertext in the database
in HMAC as a secret key (pepper)

I need to rotate these master keys when they get old.

Questions to clarify what I need to know:

When do these master keys get old or need to be rotated ?
How to rotate these keys and also can get back the old keys from the new keys to decrypt encrypted data or verify hashes that were made by these old keys ? I think I should do a bit-XOR on the old key with its corresponding new key
I currently don't have the privilege of using HSMs (Hardware Security Modules) or secure enclaves, is storing these master keys in files beside the app API secure enough ? What things should I take in mind ?
Am I fine with PBKDF2 or I'd better use a HKDF ? If yes, what other recommendations I should do when using HKDF ?
What length recommendation for the master key in such a use case ?
Is there any flows, problems or improvements in the whole thing ?

0 + 6

encryption

key-derivation

hmac

pbkdf-2

key-rotation

Swashbuckler

11/28/22, 10:45 PM

What exactly are you trying to defend against where you need to rotate the key in this manner? Generally, a key rotation involves using updated keys for new data, but not trying to re-protect the existing data? You seem want to update that existing protection, but without re-encrypting. Depending on what you're trying to protect against, that may be impossible (at least to my knowledge).

Mohamed Waleed

11/28/22, 11:04 PM

@Swashbuckler isn't it a good practice to rotate keys regularly ? also I know that these keys have a limited life cycle. The kind of encryption i am doing is encrypting private users data in a normal service, and the kind of hashing is generating signatures for tokens for users and hashing their passwords and any other data that needs to be private and i shouldn't know

Mohamed Waleed

11/28/22, 11:07 PM

@Swashbuckler I know that the life cycle of a key in general is related to its usage. I have keys that are used only to encrypt some data in a database, when should I rotate these ? when there is a leakage in data ? I also have some keys which are used very often in hashing and creating signatures for token, when should I rotate these too ?

Mohamed Waleed

11/28/22, 11:11 PM

@Swashbuckler i am thinking of key rotation as I think it is useful to make it more hard for an attacker to get any information, and also I will be hosting such an application on a vps

Mohamed Waleed

11/28/22, 11:15 PM

@Swashbuckler I am fine with the data encrypted with the old keys, I am asking about how to rotate the keys to update new data with a new key and also be able to decrypt old data without storing the full old key by doing a thing like an XOR for example

SAI Peregrinus

11/29/22, 2:12 AM

Encryption keys MUST be high-entropy (very nearly 1 bit of entropy per bit of data). That means they can't be compressed, so you MUST store the entire key to decrypt old data if you don't re-encrypt under a new key. This is [Shannon's source coding theorem](https://en.wikipedia.org/wiki/Shannon's_source_coding_theorem).

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: Managing master keys used in PBKDF2 and HMAC (store, rotate)

TH: การจัดการมาสเตอร์คีย์ที่ใช้ใน PBKDF2 และ HMAC (จัดเก็บ หมุน)

RO: Gestionarea cheilor principale utilizate în PBKDF2 și HMAC (stocare, rotire)

RU: Управление мастер-ключами, используемыми в PBKDF2 и HMAC (сохранение, ротация)

VI: Quản lý các khóa chính được sử dụng trong PBKDF2 và HMAC (lưu trữ, xoay vòng)

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.