About Lesson
Salting and Peppering: Enhancing Hashing Security
To strengthen the security of hash functions, especially for password storage, additional techniques like salting and peppering are used:
-
Salting:
- A unique, random value (salt) is added to each password before hashing. This ensures that even if two users have the same password, their hash values will differ.
- Salting protects against rainbow table attacks, which use precomputed hash values for common passwords.
-
Peppering:
- Similar to salting, but the random value (pepper) is kept secret and not stored alongside the hash. This adds an additional layer of security.