| layout | title |
|---|---|
default |
Password Storage |
In this session we'll discuss methods of securely storing passwords and what to watch out for.
- Use Bcrypt (or Scrypt)
- Goals for password security
- Never use a bare hash (e.g. MD5, SHA1)
- They're too fast
- If you can't use those, use PBKDF2 and slow it way down
<iframe id="ytplayer" type="text/html" width="640" height="360" src="https://www.youtube-nocookie.com/embed/xZ5cxxllgP8?rel=0&autoplay=0&origin={{ site.url }}" frameborder="0"></iframe>