simonepri/phc-pbkdf2

Secure default configurations

Open

#5 创建于 2018年3月6日

在 GitHub 查看
 (1 评论) (0 反应) (1 负责人)JavaScript (1 fork)github user discovery
help wanted

仓库指标

Star
 (13 star)
PR 合并指标
 (PR 指标待抓取)

描述

This issue will be updated with the current defaults used by this package while hashing your passwords.

Please comment on this issue to get them updated.

Defaults

/**
 * Default configurations used to generate a new hash.
 * @private
 * @type {Object}
 */
const defaultConfigs = {
  // Minimum number of rounds recommended to ensure data safety,
  // this value changes every year as technology improves.
  iterations: 25000,

  // The minimum recommended size for the salt is 128 bits.
  saltSize: 16, // bytes

  // SHA-1 is sufficient, using SHA-256 or SHA-512 has the benefit of
  // significantly increasing the memory requirements, which increases the cost
  // for an attacker wishing to attack use hardware-based password crackers
  // based on GPUs or ASICs.
  digest: 'sha512',
};

Last Update: 01/04/2018 (dd/mm/yyyy)

贡献者指南