Home/ Questions/Q 8429095
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-06-10T05:14:21+00:00

Will hashing both the username and the password yield any security benefits ? I

  • 0

Will hashing both the username and the password yield any security benefits ?
I meant this scheme :

1.User enters E-mail address

2.Calculate Hash(e-mail) address

3.User enters password Calculate Hash(password) .

4.Match the values to indicate a successful or failed login .

Wouldnt this make it a bit harder to match cracked hashes to the corresponding users.

I dont know if this is already used or if this idea is just impractical for some reason I havent thought of . I didnt find anything in my searches so I asked here.

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    It would make login credentials harder to crack, but it would also mean that you wouldn’t be able to get a clear text version of the user name, which is something that you may well need to do.

    The best way to strengthen the security on your login credentials is to use a stronger (ie slower) salted hash algorithm on your users’ passwords, such as bcrypt or PBKDF2.

    See http://codahale.com/how-to-safely-store-a-password/

    • 0