diff --git a/Cargo.lock b/Cargo.lock
index 7730334b5..c82284bed 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -9,7 +9,7 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "bfe0133578c0986e1fe3dfcd4af1cc5b2dd6c3dbf534d69916ce16a2701d40ba"
 dependencies = [
  "cfg-if",
- "cipher 0.4.2",
+ "cipher",
  "cpufeatures",
 ]
 
@@ -126,7 +126,7 @@ version = "0.1.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "a2c68b1d4a461fc5641967e1b255c976579a87ef000c043850ca1aff89faa128"
 dependencies = [
- "cipher 0.4.2",
+ "cipher",
 ]
 
 [[package]]
@@ -135,15 +135,6 @@ version = "1.0.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "baf1de4339761588bc0619e3cbc0120ee582ebb74b53b4efbf79117bd2da40fd"
 
-[[package]]
-name = "cipher"
-version = "0.3.0"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "7ee52072ec15386f770805afd189a01c8841be8696bed250fa2f13c4c0d6dfb7"
-dependencies = [
- "generic-array",
-]
-
 [[package]]
 name = "cipher"
 version = "0.4.2"
@@ -322,7 +313,7 @@ version = "0.8.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "ffdd80ce8ce993de27e9f063a444a4d53ce8e8db4c1f00cc03af5ad5a9867a1e"
 dependencies = [
- "cipher 0.4.2",
+ "cipher",
 ]
 
 [[package]]
@@ -862,11 +853,11 @@ checksum = "73b4b750c782965c211b42f022f59af1fbceabdd026623714f104152f1ec149f"
 
 [[package]]
 name = "salsa20"
-version = "0.9.0"
+version = "0.10.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "0c0fbb5f676da676c260ba276a8f43a8dc67cf02d1438423aeb1c677a7212686"
+checksum = "97a22f5af31f73a954c10289c93e8a50cc23d971e80ee446f1f6f7137a088213"
 dependencies = [
- "cipher 0.3.0",
+ "cipher",
 ]
 
 [[package]]
@@ -886,9 +877,9 @@ checksum = "d29ab0c6d3fc0ee92fe66e2d99f700eab17a8d57d1c1d3b748380fb20baa78cd"
 
 [[package]]
 name = "scrypt"
-version = "0.8.1"
+version = "0.9.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "e73d6d7c6311ebdbd9184ad6c4447b2f36337e327bda107d3ba9e3c374f9d325"
+checksum = "ba0aaf3911fff0d942c10a49779de7754699810fc7dbe3df515613b2ecc8195a"
 dependencies = [
  "hmac",
  "pbkdf2",
diff --git a/pkcs5/CHANGELOG.md b/pkcs5/CHANGELOG.md
index 266448e75..feef0581f 100644
--- a/pkcs5/CHANGELOG.md
+++ b/pkcs5/CHANGELOG.md
@@ -7,8 +7,10 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 ## [UNRELEASED]
 ### Changed
 - `sha1` feature is renamed to `sha1-insecure` ([#426])
+- Bump `scrypt` dependency to v0.9 ([#441])
 
 [#426]: https://github.com/RustCrypto/formats/pull/426
+[#441]: https://github.com/RustCrypto/formats/pull/441
 
 ## 0.4.0 (2021-11-15)
 ### Changed
diff --git a/pkcs5/Cargo.toml b/pkcs5/Cargo.toml
index cb78fb37c..6f056ba0f 100644
--- a/pkcs5/Cargo.toml
+++ b/pkcs5/Cargo.toml
@@ -24,7 +24,7 @@ aes = { version = "0.8.1", optional = true, default-features = false }
 des = { version = "0.8.1", optional = true, default-features = false }
 hmac = { version = "0.12.1", optional = true, default-features = false }
 pbkdf2 = { version = "0.10", optional = true, default-features = false }
-scrypt = { version = "0.8", optional = true, default-features = false }
+scrypt = { version = "0.9", optional = true, default-features = false }
 sha1 = { version = "0.10.1", optional = true, default-features = false }
 sha2 = { version = "0.10.2", optional = true, default-features = false }