to fullfil this CII requirement
If the software produced by the project causes the storing of passwords for authentication of external users, the passwords MUST be stored as iterated hashes with a per-user salt by using a key stretching (iterated) algorithm (e.g., Argon2id, Bcrypt, Scrypt, or PBKDF2). See also OWASP Password Storage Cheat Sheet).
# | Subject | Branch | Project | Status | CR | V |
---|---|---|---|---|---|---|
6158,3 | adding extra rounds in SHA-512 creation | master | ric-plt/o1 | Status: ABANDONED | 0 | -1 |