# Argon2 (Password Hashing)

Argon2 is the winner of the 2015 Password Hashing Competition (PHC) and is widely regarded as the modern best practice for password hashing. Its memory-hard design forces attackers to use large amounts of RAM, making brute-force attacks with GPUs or ASICs significantly more difficult and costly.

---

## Key Features

- **Memory-Hard:**  
  Requires significant but configurable memory to compute the hash, thwarting parallel attacks on specialized hardware.

- **Configurable Parameters:**  
  You can adjust the:
  - **Time Cost:** Number of iterations (passes).
  - **Memory Cost:** Amount of RAM (in KB) used during hashing.
  - **Parallelism:** Number of threads (lanes) involved.
  
- **Built-In Salt:**  
  Automatically generates a random salt (recommended: 16 bytes) to protect against rainbow table attacks.

- **Variants:**  
  - **Argon2d:** Strong against GPU cracking, but more vulnerable to side-channel attacks.
  - **Argon2i:** Optimized for password hashing against side-channel attacks.
  - **Argon2id:** A hybrid of Argon2d and Argon2i; recommended for general password hashing.

---

## How It Works

1. **Input:**  
   The user's plain-text password is combined with a random salt.

2. **Memory Filling:**  
   Argon2 allocates a large memory matrix (based on the configured memory cost) and fills it with pseudo-random data derived from the password and salt.

3. **Multiple Passes:**  
   The algorithm makes several passes over the memory matrix (as specified by the time cost), mixing the data intensively to increase computational difficulty.

4. **Final Hash:**  
   A final block is computed and compressed into a fixed-length hash that encapsulates all the parameters (version, memory cost, time cost, salt, and hash).

5. **Verification:**  
   To verify a password, Argon2 repeats the process using the stored parameters, then compares the computed hash with the stored hash.

---

## Communication Flow (Registration & Login)

1. **Registration:**
   - **Password Creation:** Alice chooses a password (e.g., `"mypassword"`).
   - **Hashing:** The system hashes the password using Argon2id with a generated salt and configured parameters.
   - **Storage:** The complete hash string (including all parameters) is saved in the database.

2. **Login:**
   - **Password Submission:** Alice enters her password.
   - **Verification:** The system hashes the provided password using the same parameters as stored and compares the result with the stored hash.
     - **Match:** Login successful.
     - **Mismatch:** Login denied.

*Even if an attacker steals the database, cracking the hashes becomes extremely slow and resource intensive due to Argon2's memory-hard properties.*

---

## Parameter Overview

- **Password:** User's plain-text input.
- **Salt:** A random (recommended: 16-byte) value generated automatically.
- **Time Cost:** Number of iterations (e.g., 2).
- **Memory Cost:** Memory required in KB (e.g., 65536 KB for 64 MB).
- **Parallelism:** Number of threads (e.g., 4).
- **Hash Length:** Length of the output hash (e.g., 32 bytes).

---

## Security Notes

- **State-of-the-Art:**  
  Argon2, especially Argon2id, is considered the best practice for password hashing as of 2025.
- **Memory-Hard Design:**  
  Its design makes it significantly more resistant to brute-force attacks using GPUs or ASICs than older algorithms like bcrypt.
- **Parameter Tuning:**  
  Adjust the time cost, memory cost, and parallelism settings to balance security with the performance of your system.
- **Recommended Variant:**  
  Use **Argon2id** for general password hashing as it combines the strengths of Argon2d and Argon2i.

---

## Real-World Applications

- **Modern Authentication Systems:**  
  Used in secure login systems for web applications.
- **Password Managers:**  
  Protects stored passwords.
- **Cryptographic Libraries:**  
  Commonly implemented in security-oriented software.

---

In [3]:
from argon2 import PasswordHasher

# --- Setup Argon2 hasher ---
ph = PasswordHasher(
    time_cost=2,      # iterations
    memory_cost=65536,# memory in KB (64 MB)
    parallelism=4,    # threads
    hash_len=32       # output length in bytes
)

# --- User registers password ---
password = "SuperSecret123!"
hash_str = ph.hash(password)

print("Stored Argon2 hash:", hash_str)

# --- User logs in ---
try:
    ph.verify(hash_str, "SuperSecret123!")
    print("Password correct")
except:
    print("Password incorrect")


Stored Argon2 hash: $argon2id$v=19$m=65536,t=2,p=4$grmFUKNs5OTY+VH1Q+bFVg$CmI7w9Ql2Gi2z/mNPlkz1gld/fR1J8w9djFjdUc1u6Q
Password correct
