RSA Laboratories

PKCS #5: Password-Based Cryptography Standard

This document provides recommendations for the implementation of password-based cryptography, covering key derivation functions, encryption schemes, and message-authentication schemes.

Version 2.1

  • PKCS #5 v2.1: Password-Based Cryptography Standard: PDF
  • ASN Module

Version 2.0

Version 1.5

Test Vectors

This file, by courtesy of Dr. Stephen Henson (, contains three Base64-encoded PKCS #8 EncryptedPrivateKeyInfo values, all making use of PBES2 and PBKDF2 defined in PKCS #5 v2.0. The first key is encrypted with des-cbc, the second with des-ede3-cbc and the third with rc2-cbc. The password in each case is "password" (without quotes). Once decrypted, they should all yield the same private RSA key.