Now that Scrypt has been used by cryptocurrency a new generation of hardware optimized miner (that can be converted to password-cracking) went out https://www.hashcoins.com/buy-scrypt-miners/ .
The questions are: a) Is scrypt always safe enough? b) Which scrypt parameters should be tweaked in order to make it *much more* difficult to the hardware minire? c) Is the approach of chaining multiple hashing systems (to require the attacker to implement multiple hardware-specialized system) valuable like done by some crypto-currency? The assumption is that if i need to buy 10 different specialized-ASIC to attack a specific crypto, it's obviously going to cost more. -- Fabio Pietrosanti (naif) HERMES - Center for Transparency and Digital Human Rights http://logioshermes.org - https://globaleaks.org - https://tor2web.org - https://ahmia.fi _______________________________________________ cryptography mailing list cryptography@randombit.net http://lists.randombit.net/mailman/listinfo/cryptography