Photo by regularguy.eth on Unsplash

The Proper Way To Hash A Password, Or Derive a Key From a Password: Meet PBKDF2

All those charts that show you how long it will take to crack a hashed version of a password are defined wrong. Most will take the cracking speed of a fast hashing method and use that. With a proper KDF (Key Derivation Function), we normally slow down the whole process, and can even get to a point that we can only hash just a few passwords per second, and…