Edit - Information Security Stack Exchange

You are not logged in. Your edit will be placed in a queue until it is peer reviewed.

We welcome edits that make the post easier to understand and more valuable for readers. Because community members review edits, please try to make the post substantially better than how you found it, for example, by fixing grammar or adding additional resources and hyperlinks.

Required fields*

Rev

1

There is no "cost factor for SHA-512". That seems to be some unnamed scheme which uses SHA-512, which is not further specified here. Tools such as hashcat (or even crypt) should not be used for algorithm definitions, mainly because the authors seem to have no idea themselves whatsoever.

Maarten Bodewes
– Maarten Bodewes

2022-02-01 10:12:47 +00:00
Commented Feb 1, 2022 at 10:12
@MaartenBodewes I slightly clarified my answer to say that it is not hash functions that support a variable work/cost factor (SHA-512 has a fixed loop of 80 iterations), but that it is the calling libraries that may do. My original answer was a bit imprecise, but this is what the man pages conveyed to me back then (now quoted in my answer). I also added a link to the whitepaper and specification by the author and the working group. I don't think that the "authors seem to have no idea themselves whatsoever"; the algorithm has been providing POSIX system user authentication since 15 years.

Michael F
– Michael F

2022-02-01 17:43:35 +00:00
Commented Feb 1, 2022 at 17:43
A very similar idea (SHA-256 instead of SHA-512) is discussed in this duplicate question: Is using 100,000 iterations of sha256 good enough for password storage?

Fire Quacker
– Fire Quacker

2022-02-01 17:50:14 +00:00
Commented Feb 1, 2022 at 17:50

Add a comment |

Correct minor typos or mistakes
Clarify meaning without changing it
Add related resources or links
Always respect the author’s intent
Don’t use edits to reply to the author