wisemonkeys logo
FeedNotificationProfileManage Forms
FeedNotificationSearchSign in
wisemonkeys logo

Blogs

A little bit of salt is all the hash needs!

profile
Aston Dsouza
Aug 18, 2022
4 Likes
2 Discussions
161 Reads

You have have heard about the term "Salting" with respect to passwords.So what actually is salting? Does it improve the security of password? How does salting work? Lets find out!

So What is password Hashing and Salting?

A hash is just a way to represent any data as a unique string of characters.Hashing can use lengthy unique strings depending on the type of algorithm applied.Commonly used hash is Md5 which returns a 32 character hash.When you make an account on a website or app, the password you use must be saved so that you can be recognized the next time you visit. However, this password cannot be saved in plaintext, i.e without any formatting or coding. To prevent hackers from accessing your account, the password must be hashed.

                                                       

Salting is the process of adding unique random strings of characters to passwords  before the password is hashed.These unique strings of characters that are added before or after the password is known as the "salt".This is done to change the hash and make the password more secure and hard to crack.Salting adds an extra degree of protection to hashing. To increase the security of a hash, unique sequences of characters are added to the password before hashing to modify the hash.

For example if you login to a website with the password: Password123. Before that password gets hashed, a salt value is added to it. Consider the alt value added to the password is  AH#$1D, your salted password becomes Password123AH#$1D or AH#$1DPassword.This  salted password is then hashed and stored in the database alongside other password hashes.

Suppose your orginal password is Password123 and its hash is 2f56eecd822cc9bd6ceb9f8990cc859d.

Adding salt ,makes the salted password as Password123AH#$1D and its hash to 914d738342254c4ea67e148719be5d89

As we can see the hashes are completely different. The password remains the same when you visit the site, but the hash is more secure against exploitation.Hash is usually very helpful if you have a weak password that can be cracked easily

What is the purpose of Salting these passwords?

To Strengthen Weak Passwords

Since hackers use techniques such as bruteforcing that use vast directories of words or numbers,It makes it easy for a hacker to guess the password using various permutations and combinations,especially if your password is a simple one or weak.Hackers also use RainbowTables which have terabyte of data that uses reverse engineering to guess passwords.Hence salt must be added to password which makes the use of Rainbow Tables useless.

To make passwords hashes unique

Salting is also important when two or more users have the same passwords. Adding different randomized salts to each password helps to make each unique

 

 

 

 

 

 


Comments ()


Sign in

Read Next

Microsoft Word

Blog banner

Virtual Memory

Blog banner

Is Your Password Complex Enough?

Blog banner

Time Series Analysis

Blog banner

Paging

Blog banner

Zomato (Income Sources)

Blog banner

IoT Evolution

Blog banner

Real-time Scheduling - 53003230061

Blog banner

Review on Cyber Forensics and its Analysis Tools

Blog banner

Mobile Survey

Blog banner

Health and fitness in technology

Blog banner

Health and fitness

Blog banner

AI and cyber Security

Blog banner

Cyber Attacks -- Trends Patterns and Security Countermeasures

Blog banner

TRELLO

Blog banner

Why Moms Are Choosing Customised School Accessories Over Generic Products?

Blog banner

Question

Blog banner

LIFEHACKER

Blog banner

What is Influencer Marketing and its Trends

Blog banner

Major achievement

Blog banner

Fitness

Blog banner

From Loom to Luxury: How Patola Elevates Modern Wardrobes

Blog banner

ProofHub

Blog banner

Footprinting

Blog banner

ADIDAS

Blog banner

Memory heirchy

Blog banner

Education: Key to your Prosperity

Blog banner

When Is the Right Time to Enrol My Toddler Into Preschool? NEP

Blog banner

RSA (Rivest-Shamir-Adelman) Algorithm

Blog banner

OS- Assignnment 1

Blog banner

Memory Management

Blog banner

Hacking of web server and application

Blog banner

Throttle engine ’Sneak peek into the future’

Blog banner

Why is ITSM important in IT organization?

Blog banner

Is it important to follow all the trends that come up on social media?

Blog banner

10 Types of Friends in every friend group

Blog banner

Virtual machine.

Blog banner

RAID

Blog banner

How Reading Books Shape a Child’s Imagination and Thinking?

Blog banner

Music

Blog banner

GIS info about Bermuda Triangle

Blog banner

Demystifying Cryptography: A Beginner's Guide

Blog banner