Revision as of 09:43, 1 February 2024 edit Frap (talk \| contribs) Extended confirmed users, File movers, Pending changes reviewers, Rollbackers 35,593 edits →Password hashing ← Previous edit		Revision as of 17:56, 8 March 2024 edit undo 80.216.254.131 (talk) →Password hashing Next edit →
Line 37: == Password hashing == Despite their original use for key derivation, KDFs are possibly better known for their use in '''password hashing''' ([[cryptographic hash function#Password verification\|password verification by hash comparison]]), as used by the [[passwd]] file or [[shadow password]] file. Password hash functions should be relatively expensive to calculate in case of brute-force attacks, and the [[~~key stretching\|~~key stretching]] of KDFs happen to provide this characteristic.{{citation needed\|date=October 2017}} The non-secret parameters are called "[[salt (cryptography)\|salt]]" in this context. In 2013 a [[Password Hashing Competition]] was announced to choose a new, standard algorithm for password hashing. On 20 July 2015 the competition ended and [[Argon2]] was announced as the final winner. Four other algorithms received special recognition: Catena, Lyra2, Makwa and yescrypt.<ref>[https://password-hashing.net/ "Password Hashing Competition"]</ref>

Key derivation function: Difference between revisions