Password security – hashing algorithm

Context:

It is essential to store passwords in a way that prevents them from being obtained by an attacker even if the application or database is compromised.  Hashing is a one-way function appropriate for password validation. Even if the hashed password is obtained, it cannot be used for authorization.

In whisbi we use the new generation “bcrypt” algorithm, that guarantees an extra layer of security.