Key Stretching
Key stretching is a way of slowing down the attacker from discovering a password in a hashed format. This method uses thousands of rounds of hashing. It first hashes the password and then hashes the hash and continues this process.
The attacker would have to guess at the password and then start the hashing process testing each hash until they find a match.
There are two main methods of key stretching: bcrypt & PBKDF2 (Password-Based Key Derivation 2)
No comments:
Post a Comment