SHA-2 would be a good choice. The algorithm is based on SHA-1, but avoids the sa... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		abyssknight on Nov 15, 2010 \| parent \| context \| favorite \| on: Cracking Passwords In The Cloud: Amazon’s New EC2 ... SHA-2 would be a good choice. The algorithm is based on SHA-1, but avoids the same vulnerabilites found in the SHA-1 algorithm. http://en.wikipedia.org/wiki/SHA-2

dfranke on Nov 15, 2010 [–]

SHA-1's vulnerabilities are entirely irrelevant to its unsuitability as a KDF, making SHA-2 no more suitable. As others have recommended, use scrypt or PBKDF2.

abyssknight on Nov 15, 2010 | [–]

Thanks for this. :) Learn something new every day.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact