mirror of
https://git.sr.ht/~sircmpwn/mkproof
synced 2024-05-22 16:16:07 +02:00
Remove hashcat comparison
I was mistaken about the issues with generating tokens in advance. The main advantage is then just that argon2id is much better than sha1 for this use-case.
This commit is contained in:
parent
111f9f34da
commit
e14d1d1c5c
12
README
12
README
|
@ -58,18 +58,6 @@ To verify the proof, simply run the proof algorithm with the original challenge
|
|||
parameters and the challengee's provided password and verify that the resulting
|
||||
hexadecimal string is prefixed with the appropriate number of zeroes.
|
||||
|
||||
Comparison with hashcat
|
||||
|
||||
mkproof offers some advantages over hashcat:
|
||||
|
||||
- Because Alice provides a string which is part of the input to the hashing
|
||||
function, it is not possible to generate lots of proofs in advance.
|
||||
- The use of argon2i makes it difficult to scale up proofs by being resistant
|
||||
to GPU generation and having a fixed memory cost.
|
||||
|
||||
Of course, both of those things may be desirable for your application, in which
|
||||
case hashcat is probably better for you.
|
||||
|
||||
Notes
|
||||
|
||||
The defaults are tuned to take about five minutes on one core of a modern
|
||||
|
|
Loading…
Reference in New Issue