@dreamauth/password v2.2.22
DreamAuth Password
Generate passwords and password hashes.
See the examples.
Hashing Algorithms
Argon2id(recommended: side-channel and GPU-based attack resistant)- Using hash-wasm.
- Estimated cracking cost in 2021 (8 char, uppercase, lowercase, digits)
- 3 iterations, 4 parallelism, 64MiB ≈ 1.8m USD
- 10 iterations, 4 parallelism, 512MiB ≈ 53.7m USD
PBKDF2with SHA-256/512 (FIPS-140 compliant)- Using Web Crypto API
- Estimated cracking cost in 2021 (8 char, uppercase, lowercase, digits)
- 100k iterations ≈ 35k USD
- 600k iterations ≈ 220k USD
See also:
Hashing Security Recommendations
- Output hash size should be at least 32 bytes.
- Salt size should be at least twice the output hash size.
- Passwords can be rehashed when a user successfully signs in if hashing requirements have changed. This is the only time when the original (un-hashed) password is available.
4 months ago
5 months ago
5 months ago
5 months ago
6 months ago
6 months ago
7 months ago
7 months ago
7 months ago
8 months ago
8 months ago
8 months ago
8 months ago
8 months ago
8 months ago
8 months ago
8 months ago
8 months ago
8 months ago
8 months ago
8 months ago
8 months ago
8 months ago
8 months ago
8 months ago
8 months ago
8 months ago
8 months ago
8 months ago
8 months ago
8 months ago
8 months ago
8 months ago
8 months ago
8 months ago
8 months ago
8 months ago
8 months ago
8 months ago
8 months ago
8 months ago
9 months ago
9 months ago
9 months ago
9 months ago
9 months ago
9 months ago
9 months ago
9 months ago
9 months ago
9 months ago
9 months ago
9 months ago
9 months ago
9 months ago
9 months ago
10 months ago
10 months ago
10 months ago
10 months ago