Curse you gmail. CC tech this time
On Thu, Dec 16, 2010 at 11:39 AM, Ted Unangst <ted.unan...@gmail.com> wrote:
> On Thu, Dec 16, 2010 at 10:14 AM, Bob Beck <b...@ualberta.ca> wrote:
>> Show me colin percivals' peer reviewed paper about this new scheme,
>> and where it has been compared to bcrypt. then go read neil's paper
>> on the subject please.
>
> http://www.tarsnap.com/scrypt.html
>
> It's definitely a continuation of bcrypt. Colin is not unaware of
> prior art. The theory behind scrypt is not crazy, but I think it's
> definite overkill for password hashes.
>
> I use scrypt to encrypt a few special files. It's good for key
> generation when the stuff being protected is more valuable than just a
> password (like a file containing all my passwords).