10 lines
454 B
Plaintext
10 lines
454 B
Plaintext
==== Pepper
|
|
|
|
In a defense-in-depth security approach, **peppering** can also be used. This is
|
|
a security technique where an external secret value is added to a password
|
|
before it is hashed. +
|
|
This makes it more difficult for an attacker to crack the hashed passwords, as
|
|
they would need to know the secret value to generate the correct hash. +
|
|
https://cheatsheetseries.owasp.org/cheatsheets/Password_Storage_Cheat_Sheet.html#peppering[Learn more here].
|
|
|