From owner-freebsd-security@FreeBSD.ORG  Mon Jun 11 10:44:08 2012
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 394A5106566C;
	Mon, 11 Jun 2012 10:44:08 +0000 (UTC) (envelope-from lev@FreeBSD.org)
Received: from onlyone.friendlyhosting.spb.ru (onlyone.friendlyhosting.spb.ru
	[IPv6:2a01:4f8:131:60a2::2])
	by mx1.freebsd.org (Postfix) with ESMTP id C57808FC14;
	Mon, 11 Jun 2012 10:44:07 +0000 (UTC)
Received: from lion.home.serebryakov.spb.ru (unknown
	[IPv6:2001:470:923f:1:9813:befc:15f6:30d5])
	(Authenticated sender: lev@serebryakov.spb.ru)
	by onlyone.friendlyhosting.spb.ru (Postfix) with ESMTPA id 373534AC31; 
	Mon, 11 Jun 2012 14:44:04 +0400 (MSK)
Date: Mon, 11 Jun 2012 14:44:02 +0400
From: Lev Serebryakov <lev@FreeBSD.org>
X-Priority: 3 (Normal)
Message-ID: <734419687.20120611144402@serebryakov.spb.ru>
To: "Simon L. B. Nielsen" <simon@FreeBSD.org>
In-Reply-To: <6E26E03B-8D1D-44D3-B94E-0552BE5CA894@FreeBSD.org>
References: <86r4tqotjo.fsf@ds4.des.no>
	<6E26E03B-8D1D-44D3-B94E-0552BE5CA894@FreeBSD.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=windows-1251
Content-Transfer-Encoding: quoted-printable
Cc: =?iso-8859-1?Q?Dag-Erling_Sm=F8rgrav?= <des@des.no>,
	freebsd-security@freebsd.org
Subject: Re: Default password hash
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Security issues \[members-only posting\]"
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 11 Jun 2012 10:44:08 -0000

Hello, Simon.
You wrote 10 =E8=FE=ED=FF 2012 =E3., 14:02:50:

SLBN> Has anyone looked at how long the SHA512 password hashing
SLBN> actually takes on modern computers?
 Modern  computers  are  not what should you afraid. Modern GPUs are.
And they are incredibly fast in calculation of MD5, SHA-1 and SHA-2.

 Modern key-derivation schemes must be RAM-heavy, not CPU-heavy.

 And   I   don't   understand,   why  should  we  use  our  home-grown
"strengthening" algorithms instead of "standard" choices: PBKDF2[1],
bcrypt[2] and (my favorite) scrypt[3].

[1] http://tools.ietf.org/html/rfc2898
[2] http://static.usenix.org/events/usenix99/provos/provos_html/node1.html
[3] http://www.tarsnap.com/scrypt.html

--=20
// Black Lion AKA Lev Serebryakov <lev@FreeBSD.org>