Are "sodium_crypto_pwhash", "sodium_crypto_pwhash_str", and "sodium_crypto_pwhash_str_verify" implemented?
Closed this issue · 2 comments
menturion commented
Are the below Sodium functions implemented (which are based on Argon2i):
- "sodium_crypto_pwhash",
- "sodium_crypto_pwhash_str", and
- "sodium_crypto_pwhash_str_verify".
samuel-lucas6 commented
Yes, they are implemented and can be found in the PasswordHash class. However, avoid Argon2i since it's vulnerable to an attack when you use less than 11 iterations.
menturion commented
Many thanks for the info!
That's good to know.