[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: OS support for scrypt

To: Nicolai <nicolai-scrypt@chocolatine.org>
Subject: Re: OS support for scrypt
From: Solar Designer <solar@openwall.com>
Date: Sat, 9 Aug 2014 14:05:09 +0200
Cc: scrypt@tarsnap.com
In-reply-to: <20140808205828.GA6818@vectra.student.iastate.edu>
References: <20140808205828.GA6818@vectra.student.iastate.edu>

On Fri, Aug 08, 2014 at 08:58:28PM +0000, Nicolai wrote:
> I'm trying to find out what (base) operating systems ship with any kind
> of scrypt support.  What's out there?

http://www.chromium.org/chromium-os/chromiumos-design-docs/protecting-cached-user-data

> The Owl Linux website [2] is rather sparse on details.

Owl uses bcrypt at cost 2^8 for password hashing.

> So what's out there?  Anything at all?

I think only Chrome OS / Chromium OS sort of fits your question.

I think scrypt is a crucial step forward in password hashing scheme and
KDF design, but it's not such a great fit for password hashing (it's a
better fit as a KDF).  I think currently bcrypt is still appropriate to
use for password hashing (although it has become a rather short-term
recommendation), and then one of the schemes submitted to PHC should be
used (although there are also some that are unsuitable or that I dislike).

Alexander

References:
- OS support for scrypt
  - From: Nicolai <nicolai-scrypt@chocolatine.org>

Prev by Date: Scrypt security proof weakness?
Next by Date: Stand-alone code for scrypt
Previous by thread: Re: OS support for scrypt
Next by thread: Scrypt security proof weakness?
Index(es):
- Date
- Thread