New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Align default values to OWASP recommended #80

Closed

firaja opened this issue Oct 6, 2022 · 0 comments

Labels

priority: medium status: confirmed type: enhancement

Milestone

Member

firaja commented Oct 6, 2022

Argon2id with a minimum configuration of 15 MiB of memory, an iteration count of 2, and 1 degree of parallelism.
scrypt with a minimum CPU/memory cost parameter of (2^16), a minimum block size of 8 (1024 bytes), and a parallelization parameter of 1.
For legacy systems using bcrypt, use a work factor of 10 or more.
PBKDF2 with a work factor of 310,000 or more and set with an internal hash function of HMAC-SHA-256.

firaja added type: enhancement priority: medium status: confirmed labels

firaja added this to the 1.6.1 milestone

firaja changed the title ~~Align default value to OWASP recommended~~ Align default values to OWASP recommended

davidbertoldi pushed a commit that referenced this issue


          #80: aligned to OWASP default settings

d74f6dd

firaja closed this as completed in

ec084e6

firaja mentioned this issue

Argon2 not working as expected #92

Closed

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment