Friday, March 16, 2012

Password Hashing and Salting - Recommended Reading

Looking for recommendations for *credible* information on implementing
password hashing and salting. I did my own search and came up with a bunch
of somewhat contradictory often "shooting-from-the-hip" and
advertisement-laden pages... looking for something more academic with an
objective treatment of the topic.

Thanks!Keith Brown has a brief explanation here:
http://msdn.microsoft.com/msdnmag/i...SecurityBriefs/

HTH,

--
Scott
http://www.OdeToCode.com

On Sat, 11 Sep 2004 14:33:09 -0700, "Guadala Harry" <GMan@.NoSpam.com>
wrote:

>Looking for recommendations for *credible* information on implementing
>password hashing and salting. I did my own search and came up with a bunch
>of somewhat contradictory often "shooting-from-the-hip" and
>advertisement-laden pages... looking for something more academic with an
>objective treatment of the topic.
>Thanks!
http://www.dotnetjunkies.com/Tutori...028327FF14.dcik

Greg

"Guadala Harry" <GMan@.NoSpam.com> wrote in message
news:ezDMqaEmEHA.712@.TK2MSFTNGP09.phx.gbl...
> Looking for recommendations for *credible* information on implementing
> password hashing and salting. I did my own search and came up with a bunch
> of somewhat contradictory often "shooting-from-the-hip" and
> advertisement-laden pages... looking for something more academic with an
> objective treatment of the topic.
> Thanks!
Building Secure ASP .NET Applications
http://www.microsoft.com/downloads/...8C-BF9C6593F25E

Eliyahu

"Guadala Harry" <GMan@.NoSpam.com> wrote in message
news:ezDMqaEmEHA.712@.TK2MSFTNGP09.phx.gbl...
> Looking for recommendations for *credible* information on implementing
> password hashing and salting. I did my own search and came up with a bunch
> of somewhat contradictory often "shooting-from-the-hip" and
> advertisement-laden pages... looking for something more academic with an
> objective treatment of the topic.
> Thanks!
Here's a couple good articles on hashing:
http://www.aspnetpro.com/Newsletter...p200304so_l.asp
http://aspnet.4guysfromrolla.com/articles/103002-1.aspx

--
I hope this helps,
Steve C. Orr, MCSD, MVP
http://Steve.Orr.net

"Guadala Harry" <GMan@.NoSpam.com> wrote in message
news:ezDMqaEmEHA.712@.TK2MSFTNGP09.phx.gbl...
> Looking for recommendations for *credible* information on implementing
> password hashing and salting. I did my own search and came up with a bunch
> of somewhat contradictory often "shooting-from-the-hip" and
> advertisement-laden pages... looking for something more academic with an
> objective treatment of the topic.
> Thanks!

Posted by altitudenmqo at 5:44 AM
Labels: , , , , , , , , , , , ,

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)