Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #`````#`````#`````#`````#`````#`````#`````#
- # PBKDF2 + SHA-256 Algorithm Encryption #
- #`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#
- To increase the security of your master password, this utilizes a stronger-than-typical version of Password-Based Key Derivation Function (PBKDF2).
- At its most basic, PBKDF2 is a “password-strengthening algorithm” that makes it difficult for a computer to check that any one password is the correct master password during a brute-force attack.
- The standard implementation of PBKDF2 uses SHA-1, a secure hashing algorithm. SHA-1 is fast, but its speed is a weakness in that brute-force attacks can be performed faster.
- When using SHA-256, a slower hashing algorithm is used, but provides more protection against brute-force attacks. When utilizing the PBKDF2 function implemented with SHA-256 it will turn your master password into your encryption key.
- This performs x number of rounds of the function to create the encryption key, before a single additional round of PBKDF2 is done to create your login hash.
- The entire process is conducted client-side. The resulting login hash is what is communicated with Server. The server then uses the hash to verify that you are entering the correct master password when logging in to your account.
- This also performs a large number of rounds of PBKDF2 server-side. This implementation of PBKDF2 client-side and server-side ensures that the two pieces of your data- the part that’s stored offline locally and the part that’s stored online on any servers- are thoroughly protected.
- #`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#`````#
- #LastPass
- Get Lastpass to secure your passwords: https://lastpass.com
- //BaSs_HaXoR
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement