Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
egsec
on May 7, 2013
|
parent
|
context
|
favorite
| on:
Honeywords: Making password-cracking detectable
If you are running it through an HSM, wouldn't that accomplish this goal? Take a code, encrypt with HSM, then do hashing, etc. You would have to hack the server then compromise the HSM in order to do an offline attack.
Consider applying for YC's Fall 2026 batch!
Applications
are open till July 27.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search: