Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How secure is storing salts along with hashed password

Tags:

c#

passwords

cryptography

hash

encryption

If you had looked at table schema of asp.net membership system they store the hash of raw password along with salt used to produce it. see the schema below,

dbo.aspnet_Membership

ApplicationId
UserId
Password
PasswordFormat
PasswordSalt
MobilePIN
Email
. . .

  • If a attacker gets hold of the datbase isn't it easier for him to crack open the raw password from the salt and hashed password?

  • After looking into some records it seems a new salt is generated for each password. What is significance of this?

  • Would you recommend such a approach, or hard-code constant salt in the code

Related

Are salts useless for security if the attacker knows them?

like image 971
Deeptechtons Avatar asked Nov 15 '11 07:11

Deeptechtons

1 Answers

For the specifics of ASP.NET password/hash/salt storage see for example http://msdn.microsoft.com/en-us/library/aa478949.aspx

An attacker is "allowed" to know the salt - your security must be designed in a way that even with the knowledge of the salt it is still secure.

What does the salt do ?

Salt aids in defending against brute-force attacks using pre-computed "rainbow-tables".
Salt makes brute-force much more expensive (in time/memory terms) for the attacker.
Calculating such a table is expensive and usually only done when it can be used for more than one attack/password.
IF you use the same salt for all password an attacker could pre-compute such a table and then brute-force your passwords into cleartext...
As long as you generate a new (best cryptogrpahically strong) random salt for every password you want to store the hash of there is no problem.

IF you want to strengthen the security further
You could calculate the hash several times over (hash the hash etc.) - this doesn't cost you much but it makes a brute-force attack / calculating "rainbow-tables" even more expensive... please don't invent yourself - there are proven standard methods to do so, see for example http://en.wikipedia.org/wiki/PBKDF2 and http://msdn.microsoft.com/en-us/library/system.security.cryptography.rfc2898derivebytes.aspx

NOTE:

Using such a mechanism is these days mandatrory since "CPU time" (usable for attacks like rainbow tables/brute force etc.) is getting more and more widely available (see for example the fact that Amazon's Cloud service is among the top 50 of fastest supercomuters worldwide and can be used by anyone for a comparatively small amount)!

like image 106
Yahia Avatar answered Sep 20 '22 15:09

Yahia
Sign in to Comment

Related questions

Streaming VARBINARY data from SQL Server in C#
How to split a stacktrace line into namespace, class, method file and line number?
C# .net Windows Forms Listview with image in Detail View
SQL-Date-Question: How to get Yesterdays date in the following formatte
XslCompiledTransform uses UTF-16 encoding
WebGrid Column Format Issue in MVC3
Find out if type is instantiable
Monitor.Wait, Condition variable
How to set the height of a window using c#?
Why doesn't an interface work but an abstract class does with a generic class constraint?
Does using namespaces affect performance or compile time?
Retrieve JIT output
How to discover new MEF parts while the application is running?
Is caching a repository, domain or application concern?
What is the VB.NET syntax for using List.FindAll() with a lambda?
Why bit shifting?
Create WCF service client with specified address without specifying configuration name
programmatically make textblock with hyperlink in between text
Deserialization error: value cannot be null. Parameter name: type
How to pass variables to an SSIS package from a C# application

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!