Which hash function is currently a good choice for passwords?

Question

Some hash functions today are not as secure as they were several years ago. Which hash function is currently a good choice for password hashing?

Thanks in advance.

+3

c0d3x Dec 11 '09 at 13:54

3 answers

, (, SHA-512). , .

0

Joel Martinez 11 . '09 13:57

A key hash such as the SHA256 HMAC would be a good option to prevent brute force attacks if your data warehouse is compromised.

0

recursive Dec 11 '09 at 13:58

Matt · Accepted Answer · 2009-12-11T13:59:31+0000

Well, sha-2 is technically safer, but there are no conflicts for sha-1 yet.

If you are trying to protect against rainbow tables or something else, I would go with sha-2, since he has not yet seen widespread use (for now).