Menu
What is the most secure one way encryption algorithm to encrypt passwords?
MD5 and SHA (1..512) are frequently used, but they are designed for speed what is bad for preventing brute force attacks on encrypted passwords.
The algorithm shouldn't be too exotic, so that it can be used with common programming languages / runtimes like Java, .NET or Python.
812
BCrypt or SCrypt. Why? because they where designed to be slow instead of fast.
see also: How to securely hash passwords? on security.stackexchange.com
117
Hashing alone won't save you, as can be read in other posts on the topic.
bcrypt and scrypt are indeed good choices, but they're not supported out of the box by most languages. Although it really shouldn't be a problem to find a library that supports them. In addition to these two, you could use password-based encryption (PBE) as described in PKCS#5, ideally with PBKDF2. There should be built-in support for PBE almost anywhere.
31
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
