Collaborate Disseminate
Since slower is better and key stretching is an awesome way to increase security over potentially low entropy passwords, doesn’t it make sense to use all three?
To be clear, this is about implementing a key stretching archit… Continue reading Isn’t using pbkdf2 + scrypt + bcrypt best?
I am wanting to secure some highly sensitive data in a database. This would mean that the data needs to be encrypted and remain secure for 100 years if it were to fall into adversary hands. I also want to limit the amount of … Continue reading Database row level encryption scheme
If I understand correctly, according to this: http://blog.ircmaxell.com/2014/03/why-i-dont-recommend-scrypt.html, looks like the attacker can just create an optimimized version of scrypt that produce the same ouput with extre… Continue reading Has scrypt been broken, finally?