Password Storage Cheat Sheet

= ACTIVE WORK IN PROGRESS AUGUST 2011 =

= Introduction =

This article is focused on providing guidance to storing a passwords in order to help prevent password theft.

Password Storage Rules

 * 1) Use a Modern Hash
 * 2) SHA
 * 3) bcrypt
 * 4) Use a long cryptograpgically random salt
 * 5) Isolate the salt from the hash
 * 6) Iterate the hash