This is JBW_1's Typepad Profile.
Join Typepad and start following JBW_1's activity
Already a member?
Update has been hidden from all public facing feeds in Typepad
There is a security tradeoff with tunable workfactor based hashing systems (bcrypt and co) - it is really quite easy to launch a DoS against such a scheme since by design they consume system resources. Sure, that's not the same issue as a data breach, but if 2011 is any indication DoS is popular in a big way again among a certain particular populace. As for salting - it has an exponential effect on the work to crack regardless of whether the salt is secret or not. with a salt you have to brute force passwords per user, since for a given user it is necessary to go through + user specific salt for every user specific salt.
Commented Apr 6, 2012 on
Hashes are a bit like fingerprints for data. A given hash uniquely represents a file, or any arbitrary collection of data. At least in theory. This is a 128-bit MD5 hash you're looking at above, so it can represent at most 2128 unique items, or 340 trillion trillion trillion. In reality the...
JBW_1 is now following
The Typepad Team
Mar 5, 2012
Subscribe to JBW_1’s Recent Activity
View all »
Around The Web
All Rights Reserved.
Terms of Service