


I have read that when hashing a password, many programmers recommend using the BCrypt algorithm.


I am programming in C# and is wondering if anyone knows of a good implementation for BCrypt? I found this page, but I don't really know if it is bogus or not.


What should I be aware of when choosing a password hashing scheme? Is BCrypt a 'good' implementation?



First, some terms that are important:

- 采取串并产生一个字符序列的行为是不能要恢复到原始字符串。

Hashing - The act of taking a string and producing a sequence of characters that cannot be reverted to the original string.

- (通常只简称加密) - 服用一个字符串转化的字符序列的行为可以通过使用该加密是相同的加密密钥来解密原始字符串。

Symmetric Encryption - (Usually just referred to as 'encryption') - The act of taking a string and producing a sequence of characters that can be decrypted to the original string through the use of the same encryption key that encrypted it.

- 包含特定字符散列的所有变体查找表散列算法。

Rainbow Table - a lookup table that contains all variations of characters hashed in a specific hashing algorithm.

- 前追加到原始字符串一个已知的随机字符串它是散列。

Salt - a known random string appended to the original string before it is hashed.

对于.NET Framework,Bcrypt还没有一个的验证的参考实现。这一点很重要,因为没有办法知道是否有现有的实现存在严重缺陷。你可以在这里得到 。

  • 盐之前,每个密码哈希的。

  • 使用一个和含盐存储与密码。

  • 要求使用强密码

    1. Use a relatively secure hash algorithm.
    2. Salt each password before it's hashed.
    3. Use a unique and long salt for each password, and store the salt with the password.
    4. Require strong passwords.


    Unfortunately, even if you do all this, a determined hacker still could potentially figure out the passwords, it would just take him a really long time. That's your chief enemy: Time.

    借助密码; (仍然比AES或SHA-512长得多)。它迫使黑客花费更多的时间来创建一个彩虹表来查找你的密码,使其不太可能,你的密码会在被黑客攻击危险。

    The bcrypt algorithm works because it takes five orders of magnitude longer to hash a password than MD5; (and still much longer than AES or SHA-512). It forces the hacker to spend a lot more time to create a rainbow table to lookup your passwords, making it far less likely that your passwords will be in jeopardy of being hacked.


    If you're salting and hashing your passwords, and each salt is different, then a potential hacker would have to create a rainbow table for each variation of salt, just to have a rainbow table for one salted+hashed password. That means if you have 1 million users, a hacker has to generate 1 million rainbow tables. If you're using the same salt for every user, then the hacker only has to generate 1 rainbow table to successfully hack your system.


    If you're not salting your passwords, then all an attacker has to do is to pull up an existing Rainbow table for every implementation out there (AES, SHA-512, MD5) and just see if one matches the hash. This has already been done, an attacker does not need to calculate these Rainbow tables themselves.


    Even with all this, you've got to be using good security practices. If they can successfully use another attack vector (XSS, SQL Injection, CSRF, et. al.) on your site, good password security doesn't matter. That sounds like a controversial statement, but think about it: If I can get all your user information through a SQL injection attack, or I can get your users to give me their cookies through XSS, then it doesn't matter how good your password security is.


    1. 杰夫阿特伍德:<一href=\"http://www.$c$cproject.com/KB/security/SimpleEncryption.aspx?fid=172899&df=90&mpp=10&noise=2&sort=Position&view=Expanded&fr=91\">.NET加密简化(伟大的散列概述)

    2. 杰夫阿特伍德:

    3. 杰夫阿特伍德:You're大概存储密码不正确

    4. 杰夫阿特伍德:

    1. Jeff Atwood: .NET Encryption Simplified (great for an overview of hashing)
    2. Jeff Atwood: I just logged in as you
    3. Jeff Atwood: You're probably storing passwords incorrectly
    4. Jeff Atwood: Speed Hashing


    Note: Please recommend other good resources. I've must have read a dozen articles by dozens of authors, but few write as plainly on the subject as Jeff does. Please edit in articles as you find them.


    08-26 03:24