New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Plans to add Argon2 as a password hashing backend? #2643
Comments
Probably not until it's supported in a widely used backend (e.g. OpenSSL). @hynek (who wrote argon2-cffi) is also a contributor here :-) |
Oh cool, and I just read his article. How nifty. Anyway, I don't have any need for it; just curious. |
This is further complicated that the argon2 spec is changing to address some weaknesses found. |
I'm going to go ahead and close this since we're mostly dependent on OpenSSL for this. |
Any news regarding this? |
No change. For now if you want argon2 you should use |
I hope Argon can be added soon to this library. That could mean that by Bionic, Ubuntu would come pre-installed with ideal suite of primitives for crypto applications; X25519, ChaCha20-Poly1305 and Argon2. |
This is entirely dependent on OpenSSL adding argon2(id). Since scrypt is now available in OpenSSL maybe argon2(id) could be added, but I'm not aware of any proposal to do so at this point. |
Are there any plans to add the new Argon2 password hashing function?
Django is already starting to consider it and there are already ctypes and CFFI bindings for it.
A little more info: https://hynek.me/articles/storing-passwords/
The text was updated successfully, but these errors were encountered: