Comparing version 1.4.1 to 1.4.2
{ | ||
"name": "scrypt", | ||
"description": "The scrypt crypto library for NodeJS", | ||
"version": "1.4.1", | ||
"version": "1.4.2", | ||
"keywords": [ | ||
@@ -6,0 +6,0 @@ "scrypt", |
@@ -5,3 +5,3 @@ #Scrypt For NodeJS | ||
##What Is Scrypt? | ||
Scrypt is an advanced crypto library used mainly for [key derivation](http://en.wikipedia.org/wiki/Key_derivation_function) (i.e. password authenticator). More information can be found: | ||
Scrypt is an advanced crypto library used mainly for [key derivation](http://en.wikipedia.org/wiki/Key_derivation_function) (i.e. password authenticator). More information can be found here: | ||
@@ -12,3 +12,3 @@ * [Tarsnap blurb about scrypt](http://www.tarsnap.com/scrypt.html) - Colin Percival (the author of scrypt) explains a bit about it. | ||
For additional interest, also read the [key derivation function](http://en.wikipedia.org/wiki/Key_derivation_function) article on wikipedia. | ||
For additional interest, read the article on wikipedias about the [key derivation function](http://en.wikipedia.org/wiki/Key_derivation_function). | ||
@@ -19,9 +19,9 @@ ###The Three Essential Properties Of Password Key Derivation | ||
* The password must not be stored in plaintext. (Therefore it is hashed). | ||
* The password hash must be salted. (Rainbow table attack is very difficult to pull off). | ||
* The salted hash function must not be fast. (If someone does get hold of the salted hashes, it will take a long time to brute force). | ||
* The password hash must be salted. (Making rainbow table attack is very difficult to pull off). | ||
* The salted hash function must not be fast. (If someone does get hold of the salted hashes, their only option will be brute force which will be very slow). | ||
This scrypt library automatically handles the above properties. The last item seems strange: Computer scientists are normally pre-occupied with making things fast. Yet it is this property that sets Scrypt apart from the competition. As computers evolve and get more powerful, they are able to attack this property more efficiently. This has become especially apparent with the rise of parallel programming. Scrypt aims to defend against all types of attacks, not matter the attackers power. | ||
This scrypt library automatically handles the above properties. The last item seems strange: Computer scientists are normally pre-occupied with making things fast. Yet it is this property that sets Scrypt apart from the competition. As computers evolve and get more powerful, they are able to attack this property more efficiently. This has become especially apparent with the rise of parallel programming. Scrypt aims to defend against all types of attacks, not matter the attackers power now or in the future. | ||
### What This Library Provides | ||
This library implements node modules for the following: | ||
### What This Module Provides | ||
This module implements the following: | ||
@@ -255,3 +255,3 @@ * **Scrypt password key derivation** | ||
var cipher = scrypt.encryptSync(message, password, maxtime, maxmem, maxmemfrac); | ||
var plainText = scrypt.decrypt(cipher, password, maxtime, maxmem, maxmemfrac); | ||
var plainText = scrypt.decryptSync(cipher, password, maxtime, maxmem, maxmemfrac); | ||
@@ -258,0 +258,0 @@ #Api |
Sorry, the diff of this file is not supported yet
Sorry, the diff of this file is not supported yet
Sorry, the diff of this file is not supported yet
Sorry, the diff of this file is not supported yet
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
196590