Re: Password management

There should be no confusion. There are three approaches to storing a
password
plaintext
hashed
encrypted

Obviuosly, nobody does plaintext any longer. WIndows by default does
hashed, that is, a
non-invertible algorithm such that you cannot derive the original input
from the hash, and
encrypted, which is reversible.

The password is encrypted by Windows, not by the client. So the method of
decrypting is
not specified. We can assume for purposes of this discussion that the
password is
reversible, since that is part of the problem specification. If the
password were hashed,
the whole issue would be irrelevant and not be discussed.

It is not a choice of "pick one", it is a choice of "pick the one that
inverts the
encryption applied by Windows when it created the reversible encryption",
and that is what
I cannot discover. Alternatively, it could be "this is how you specify
the parameters for
the encryption" at which point the decryption becomes obvious. If I
encrypt with RSA256,
and have access to the private key, I know how to decrypt. What is
unspecified is how
Windows encrypts, or how Windows allows me to specify the parameters of
the encryption
algorithm.
joe