Comment by stavros
21 days ago
This is a lot of cryptography, but how is it better than the hundred previous attempts, that simply hashed the input?
21 days ago
This is a lot of cryptography, but how is it better than the hundred previous attempts, that simply hashed the input?
Most prior attempts reduce to hash(master || site). Bastion treats password generation as a cryptographic protocol with explicit invariants, not a convenience function.
An important note is Hashing ≠ memory-hard Hashing ≠ unbiased sampling Hashing ≠ domain separation Hashing ≠ rotation without storage