Hacker News
- Peppering (Password Storage) https://cheatsheetseries.owasp.org/cheatsheets/Password_Storage_Cheat_Sheet.html#peppering 57 comments
- Password Storage - OWASP Cheat Sheet Series https://cheatsheetseries.owasp.org/cheatsheets/Password_Storage_Cheat_Sheet.html 40 comments crypto
Linking pages
- Account authentication and password management best practices | Google Cloud Blog https://cloudplatform.googleblog.com/2018/01/12-best-practices-for-user-account.html 431 comments
- The quest for a family-friendly password manager https://dustri.org/b/the-quest-for-a-family-friendly-password-manager.html 137 comments
- User Authentication System.md · GitHub https://gist.github.com/siscia/5ed3277551370df3eb8b1063923621d4 79 comments
- On PBKDF2 iterations – Neil Madden https://neilmadden.blog/2023/01/09/on-pbkdf2-iterations/ 65 comments
- Edge-compatible Serverless Driver for Postgres - Neon https://neon.tech/blog/serverless-driver-for-postgres/ 44 comments
- How to securely encrypt a file with an insecure password in Rust (using Streaming Encryption + Argon2) https://kerkour.com/rust-file-encryption-chacha20poly1305-argon2/ 39 comments
- A02 Cryptographic Failures - OWASP Top 10:2021 https://owasp.org/Top10/A02_2021-Cryptographic_Failures/ 30 comments
- Password auth in Rust, from scratch - Attacks and best practices | Luca Palmieri https://www.lpalmieri.com/posts/password-authentication-in-rust/ 18 comments
- Perfecting the password field with the HTML passwordrules attribute https://www.scottbrady91.com/Authentication/Perfecting-the-Password-Field-with-the-HTML-passwordrules-Attribute 10 comments
- Adventures in password hashing + migrating to Argon2id â brandur.org https://brandur.org/fragments/password-hashing 5 comments
- best-practices-badge/criteria.md at main · coreinfrastructure/best-practices-badge · GitHub https://github.com/linuxfoundation/cii-best-practices-badge/blob/master/doc/criteria.md 4 comments
- Sign-up form best practices https://web.dev/sign-up-form-best-practices/ 2 comments
- Using entropy for user-friendly strong passwords https://planetscale.com/blog/using-entropy-for-user-friendly-strong-passwords 2 comments
- LostPass: after the LastPass hack, here’s what you need to know • Graham Cluley https://grahamcluley.com/lostpass-after-the-lastpass-hack-heres-what-you-need-to-know/ 2 comments
- User Sign-up Flow - by Josh - Dev Blueprints https://devblueprints.substack.com/p/user-sign-up-flow 1 comment
- Password-protected resources on static-site webhosters https://knrdl.github.io/posts/password-protected-static-sites/ 0 comments
- On Password Handling · chatr https://aaronbedra.com/post/on_password_handling/ 0 comments
- Making Sure Your Auth System Can Scale - FusionAuth https://fusionauth.io/learn/expert-advice/identity-basics/making-sure-your-auth-system-scales/ 0 comments
- Account authentication and password management best practices | Google Cloud Blog https://cloud.google.com/blog/products/identity-security/account-authentication-and-password-management-best-practices 0 comments
- 10 Java security best practices | Snyk https://snyk.io/blog/10-java-security-best-practices/ 0 comments
Linked pages
- NIST Special Publication 800-63B https://pages.nist.gov/800-63-3/sp800-63b.html 673 comments
- Security releases issued | Weblog | Django https://www.djangoproject.com/weblog/2013/sep/15/security/ 38 comments
- Security Issue: Combining Bcrypt With Other Hash Functions | ircmaxell's Blog http://blog.ircmaxell.com/2015/03/security-issue-combining-bcrypt-with.html 23 comments
- Argon2 - Wikipedia https://en.wikipedia.org/wiki/Argon2 9 comments
- PBKDF2 - Wikipedia http://en.wikipedia.org/wiki/PBKDF2 7 comments
- http://www.tarsnap.com/scrypt/scrypt.pdf 5 comments
- Password storage disclosures | Pulse https://pulse.michalspacek.cz/passwords/storages 2 comments
- Password Hashing Competition - Wikipedia https://en.wikipedia.org/wiki/Password_Hashing_Competition 0 comments
- Does bcrypt have a maximum password length? - Information Security Stack Exchange https://security.stackexchange.com/questions/39849/does-bcrypt-have-a-maximum-password-length 0 comments
Would you like to stay up to date with Computer science? Checkout Computer science Weekly.
Related searches:
Search whole site: site:cheatsheetseries.owasp.org
Search title: Password Storage - OWASP Cheat Sheet Series
See how to search.