What's Up Argon2? The Password Hashing Winner A Year Later

Presented at BSidesLV 2016, Aug. 2, 2016, noon (30 minutes).

Argon2 is the winner of the Password Hashing Competition (PHC), as announced in July 2015. Since then the reference code of Argon2 on GitHub received more than 1000 stars and has bindings for most popular languages and platforms. People implemented Argon2, cryptanalyzed it, deployed it. Argon2 supersedes legacy password hashes PBKDF2, bcrypt, scrypt, and will likely become the standard algorithm for memory-hard hashing and key derivation. In this talk I'll review what's been accomplished in a year, and I'll explain when you should use Argon2 and how you can best fine-tune it for your application.


Presenters:

  • Jean-Philippe Aumasson - Principal Research Engineer - Kudelski Security
    Jean-Philippe (JP) Aumasson is Principal Research Engineer at Kudelski Security, in Switzerland. He obtained his PhD in cryptography from EPFL in 2010. JP designed the popular cryptographic functions BLAKE2 and SipHash, and the new authenticated cipher NORX. He presented at Black Hat, DEFCON, RSA, and other international conferences. He initiated the Crypto Coding Standard and the Password Hashing Competition projects, wrote the books The Hash Function BLAKE (Springer, 2015) and Serious Cryptography (No Starch Press, 2017). JP tweets as @veorq.

Links:

Similar Presentations: