Rust 密码哈希函数:Argon2、scrypt、PBKDF2
我正在评估Rust的密码哈希函数,特别是Argon2、scrypt和PBKDF2。我使用的是RustCrypto的开源实现。如果你想自己尝试这些,我有三个简单的演示:
* [Rust Argon2 演示](https://github.com/joelparkerhenderson/demo-rust-argon2)
* [Rust Scrypt 演示](https://github.com/joelparkerhenderson/demo-rust-scrypt)
* [Rust PBKDF2 演示](https://github.com/joelparkerhenderson/demo-rust-pbkdf2)
我希望能得到一些建议,比如优缺点。我的背景是医疗软件,哈希处理通常在现代机器上进行。我了解OWASP的推荐,这些建议似乎总体上很有帮助。谢谢!
查看原文
I'm evaluating Rust password hashing functions, specifically Argon2, scrypt, PBKDF2. I'm using the RustCrypto open source implementations.
I have three simple demos in case you want to try these yourself:<p>* https://github.com/joelparkerhenderson/demo-rust-argon2<p>* https://github.com/joelparkerhenderson/demo-rust-scrypt<p>* https://github.com/joelparkerhenderson/demo-rust-pbkdf2<p>I'm seeking advice please, such as pros and cons. The context is medical software where hashing is on generally modern machines. I'm aware of the OWASP recommendations which seem broadly helpful. Thanks!