Reputation: 92449
Algorithm for one way password encryption
What is the most secure one way encryption algorithm to encrypt passwords?
MD5 and SHA (1..512) are frequently used, but they are designed for speed what is bad for preventing brute force attacks on encrypted passwords.
The algorithm shouldn't be too exotic, so that it can be used with common programming languages / runtimes like Java, .NET or Python.
Upvotes: 5
Views: 4409
Answers (3)
Reputation: 9483
People are using BCrypt, a cryptography method, because it's very slow.
See: http://codahale.com/how-to-safely-store-a-password/ and http://www.openwall.com/crypt/
Also take a look at this question: https://security.stackexchange.com/questions/4781/do-any-security-experts-recommend-bcrypt-for-password-storage
SHA512 vs. Blowfish and Bcrypt
https://security.stackexchange.com/questions/211/how-to-securely-hash-passwords
Upvotes: 1
Reputation: 39620
Hashing alone won't save you, as can be read in other posts on the topic.
bcrypt and scrypt are indeed good choices, but they're not supported out of the box by most languages. Although it really shouldn't be a problem to find a library that supports them. In addition to these two, you could use password-based encryption (PBE) as described in PKCS#5, ideally with PBKDF2. There should be built-in support for PBE almost anywhere.
Upvotes: 2
Reputation: 23759
BCrypt or SCrypt. Why? because they where designed to be slow instead of fast.
see also: How to securely hash passwords? on security.stackexchange.com
Upvotes: 9
Related Questions
- What is currently the most secure one-way encryption algorithm?
- Password Hash Approach
- Securing passwords SHA-1 Java
- Passwords, Salts, And Security Concepts
- Strong one way hash for weak passwords
- Cryptography: Make a stronger hash for password
- two-way keyed encryption/hash algorithm
- Password Hashing
- what would ideal password hashing algorithm look like?
- Password Encryption 3 approaches