Reply to post:

Father of Unix Ken Thompson checkmated: Old eight-char password is finally cracked

Michael Wojcik Silver badge

Sorry, if it doesn't have an adjustable iteration count, it's not a modern password hash algorithm.

Even that isn't enough. If it's not memory-intensive (and not just compute-intensive), it's not a modern password hash algorithm. The state of the art has moved on from simply using large-range cryptographic digests with salts, like SSHA512. Simple adjustable-compute-cost algorithms like PBKDF2 (with common PRFs such as HMAC-SHA2) and bcrypt are starting to get long in the tooth.

Argon2 and scrypt qualify as a modern password hash algorithms.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon


Biting the hand that feeds IT © 1998–2019