If you encrypt *instead of* peppering, you just decrypt then re-encrypt with a n... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

CiPHPerCoder on Sept 21, 2016 | parent | context | favorite | on: How Dropbox securely stores your passwords

If you encrypt instead of peppering, you just decrypt then re-encrypt with a new key and call it a day.

Peppering has always meant, to me, doing something like this:

  // Hashing
  $preHash = base64_encode(
      hash_hmac('sha512', $password, $_ENV['pepper'], true)
  );
  $storedHash = password_hash($preHash, PASSWORD_DEFAULT);

  // Validation
  $preHash = base64_encode(
      hash_hmac('sha512', $password, $_ENV['pepper'], true)
  );
  if (password_verify($preHash, $storedHash)) {
      // You're in!
  }

To anyone reading this: Don't bother peppering.

jbrownbridge on Sept 21, 2016 [–]

Alternatively you could just encrypt the already encrypted data with the new key.

CiPHPerCoder on Sept 22, 2016 | [–]

Wouldn't that require you to retain all compromised keys, and daisy chain the encryption operations?

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact