Hacker News
- Peppering (Password Storage) https://cheatsheetseries.owasp.org/cheatsheets/Password_Storage_Cheat_Sheet.html#peppering 57 comments
- Password Storage - OWASP Cheat Sheet Series https://cheatsheetseries.owasp.org/cheatsheets/Password_Storage_Cheat_Sheet.html 40 comments crypto
Linking pages
- Bitwarden design flaw: Server side iterations | Almost Secure https://palant.info/2023/01/23/bitwarden-design-flaw-server-side-iterations/ 439 comments
- Account authentication and password management best practices | Google Cloud Blog https://cloudplatform.googleblog.com/2018/01/12-best-practices-for-user-account.html 431 comments
- GitHub - robinmoisson/staticrypt: Password protect a static HTML page, decrypted in-browser in JS with no dependency. No server logic needed. https://github.com/robinmoisson/staticrypt 346 comments
- The quest for a family-friendly password manager https://dustri.org/b/the-quest-for-a-family-friendly-password-manager.html 137 comments
- Introducing passkey support to Fastmail | Fastmail https://www.fastmail.com/blog/introducing-passkeys/ 115 comments
- User Authentication System.md · GitHub https://gist.github.com/siscia/5ed3277551370df3eb8b1063923621d4 79 comments
- On PBKDF2 iterations – Neil Madden https://neilmadden.blog/2023/01/09/on-pbkdf2-iterations/ 65 comments
- Edge-compatible Serverless Driver for Postgres - Neon https://neon.tech/blog/serverless-driver-for-postgres/ 44 comments
- How to securely encrypt a file with an insecure password in Rust (using Streaming Encryption + Argon2) https://kerkour.com/rust-file-encryption-chacha20poly1305-argon2/ 39 comments
- A02 Cryptographic Failures - OWASP Top 10:2021 https://owasp.org/Top10/A02_2021-Cryptographic_Failures/ 30 comments
- Password auth in Rust, from scratch - Attacks and best practices | Luca Palmieri https://www.lpalmieri.com/posts/password-authentication-in-rust/ 18 comments
- GitHub - samuel-lucas6/Cryptography-Guidelines: Guidance on implementing cryptography as a developer. https://github.com/samuel-lucas6/Cryptography-Guidelines 16 comments
- LastPass breach: The significance of these password iterations | Almost Secure https://palant.info/2022/12/28/lastpass-breach-the-significance-of-these-password-iterations/ 15 comments
- Perfecting the password field with the HTML passwordrules attribute https://www.scottbrady91.com/Authentication/Perfecting-the-Password-Field-with-the-HTML-passwordrules-Attribute 10 comments
- How to Store Passwords in Database - by Neo Kim https://newsletter.systemdesign.one/p/how-to-store-passwords-in-database 10 comments
- Help Everyone Do Better Security https://matduggan.com/security-feels-pointless/ 9 comments
- Adventures in password hashing + migrating to Argon2id â brandur.org https://brandur.org/fragments/password-hashing 5 comments
- GitHub - RustCrypto/password-hashes: Password hashing functions / KDFs https://github.com/RustCrypto/password-hashes 5 comments
- best-practices-badge/criteria.md at main · coreinfrastructure/best-practices-badge · GitHub https://github.com/linuxfoundation/cii-best-practices-badge/blob/master/doc/criteria.md 4 comments
- Create a Secure Flask Login System Using Argon2 Hashing https://jacobpadilla.com/articles/Python-Flask-Login-System 4 comments
Linked pages
- NIST Special Publication 800-63B https://pages.nist.gov/800-63-3/sp800-63b.html 672 comments
- Security releases issued | Weblog | Django https://www.djangoproject.com/weblog/2013/sep/15/security/ 38 comments
- Security Issue: Combining Bcrypt With Other Hash Functions | ircmaxell's Blog http://blog.ircmaxell.com/2015/03/security-issue-combining-bcrypt-with.html 23 comments
- Argon2 - Wikipedia https://en.wikipedia.org/wiki/Argon2 9 comments
- PBKDF2 - Wikipedia http://en.wikipedia.org/wiki/PBKDF2 7 comments
- http://www.tarsnap.com/scrypt/scrypt.pdf 5 comments
- Password storage disclosures | Pulse https://pulse.michalspacek.cz/passwords/storages 2 comments
- Password Hashing Competition - Wikipedia https://en.wikipedia.org/wiki/Password_Hashing_Competition 0 comments
- Does bcrypt have a maximum password length? - Information Security Stack Exchange https://security.stackexchange.com/questions/39849/does-bcrypt-have-a-maximum-password-length 0 comments
- Minimum Password Settings - TobTu https://tobtu.com/minimum-password-settings/ 0 comments
Would you like to stay up to date with Computer science? Checkout Computer science
Weekly.
Related searches:
Search whole site: site:cheatsheetseries.owasp.org
Search title: Password Storage - OWASP Cheat Sheet Series
See how to search.