Module ya crypto iliyojengwa ndani ya Node hutoa funguo za kicryptographia: hashing, encryption, thamani za nasibu, na HMAC. Matumizi muhimu zaidi ya kivitendo — hashing ya nywila — ina kanuni muhimu: kamwe usitumie hashes za haraka, za matumizi ya jumla (MD5/SHA-256) kwa nywila.
Hashing ya nywila: tumia algoritimu YA POLEPOLE, yenye salt
{ scrypt, randomBytes, timingSafeEqual } ;
{ promisify } ;
scryptAsync = (scrypt);
() {
salt = ().();
derived = (password, salt, );
;
}
() {
[salt, hash] = stored.();
derived = (password, salt, );
hashBuf = .(hash, );
(hashBuf, derived);
}
