Academic Integrity: tutoring, explanations, and feedback — we don’t complete graded work or submit on a student’s behalf.

For all of my hobby web projects, I have coded a login system that these project

ID: 659477 • Letter: F

Question

For all of my hobby web projects, I have coded a login system that these projects share. There is no critical data in these projects, the only critical data could be reused passwords. So I try to hash passwords in a very secure way.

My current password hashing algorithm is nothing I would call really secure. And as I saw that PHP now offers build in hashing with password_hash, I thought about switching.

My question is, what are the benefits of switching for me? In terms of, what extra protection do I get, what hole(s) do I fix, etc.? And is there anything else I have to do to not make it extremely insecure?

I would like to use the answers as a learning experience for myself so I can teach it to others who are in my position.

My current algorithm (pseudo-code):

Salt = "some-salt"
Repeat 1000000 times
Password = Sha512(Salt + username + Salt + Password)

I know my site is vulnerable to timing attacks and the PHP built-in functions would fix that.

What else is obviously insecure?

Explanation / Answer

For starters you rolled your own piece of password hashing algorithm. There are currently but three password hashing algorithms which are considered secure:

You are iterating and you are appending a salt. You also seem to add the username within the algorithm, which does not add any benefit as you are already using a salt.

What I can't deduct from your code and which is very important is the length of your salt and how you generate it. A salt should never be hardcoded, but secure randomly generated when hashing the password. The salt should be unique within the database and preferably globally unique as to avoid identification of similar passwords in different databases (hence a username is not considered a good salt).

Also the way PBKDF2 works (which leans closest to your implementation) is by using a HMAC where the random generated salt is the key used to calculate the message digest, rather than appending everything together. PHP's password_hash is using the bcrypt algorithm.

So to summarize what you gain by using a standard algorithm instead of your own:

Related Questions

For a touring bicyclist the drag coefficient C (where f air=12 C A v 2) is 1.06,
Question #1360056
For a trait that has a genetic variance of 15 and an environmental variance of 8
Question #66015
For a transmission line the voltage magnitude at the sending end is always large
Question #1716821
For a triangle with sides of length a, b, and c, the area A is given as A = wher
Question #1855732
For a trigonal prismatic complex, [TiL], Table 8.6 indicates that the d_z^2 orbi
Question #1057729
For a two-security portfolio, the formula for portfolio risk is: Portfolio varia
Question #2766195
For a two-source network, if current produced by one source is in one direction,
Question #2293537
For a two-tailed hypothesis test at the significance level , the null hypothesis
Question #3044277
Hire Me For All Your Tutoring Needs
Integrity-first tutoring: clear explanations, guidance, and feedback.
Drop an Email at
drjack9650@gmail.com
Chat Now And Get Quote

Navigate

Previous
For all languages A and B, if A and are not context-free, then A union B is not
Next
For all of the (19) pictures above, please specify the following (IF APPLICABLE)

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.