Key Stretching
Key stretching is a way of slowing the attacker down from discovering a password in a hashed format. This method uses thousands of rounds of hashing. It first hashes the password, then hashes the hash, and continues this process.
The attacker would have to guess the password and start the hashing process by testing each hash until they find a match.
There are two main methods of key stretching: bcrypt & PBKDF2 (Password-Based Key Derivation 2)
No comments:
Post a Comment