My Computer Forum Computer Science Forum

Go Back   My Computer Forum > Computer Science Forum > Networking

Networking Computer Network, Data Network, Telecommunications Network - Exchange of data between computers along cable or wireless media network links


Reply
 
LinkBack Thread Tools Display Modes
April 10th, 2011, 04:19 AM   #1
Site Founder
 
julien's Avatar
 
Joined: Dec 2007
Posts: 414
Is SHA-512 enough ?

Hello everyone,
I am currently developing a platform and needs some hashing algorithm in order to mask my users' passwords. While md5 was appropriate for a while, it is now easily cracked. Therefore I decided to turn to the sha family of algorithms, and in particular to sha 512 (augmented with a nontrivial salt).
In order to increase cracking time, I added to the salt a "random salt" between x and x+100000, thereby multiplying cracking time, on average, by 50000.
While this might all seem very reasonable, passwords hashed in such a way would still be crackable by an organization equiped with several powerful servers ... do you believe I should take further measures and completely encrypt all sensitive date ?
julien is offline  
 

My Computer Forum is free to register and we welcome everyone!

November 29th, 2011, 03:40 AM   #2
Guest
 
Joined:
Posts: n/a
Re: Is SHA-512 enough ?

It should suffice to say whether bcrypt or SHA-512 is good enough. And the answer is yes, either algorithm is secure enough that a breach
 
Reply

  My Computer Forum > Computer Science Forum > Networking

Tags
sha512



Thread Tools
Display Modes






Copyright © 2017 My Computer Forum Forum. All rights reserved.