Talk:Pepper (cryptography)

This article was nominated for deletion on 6 February 2018. The result of the discussion was keep.

This article is rated Start-class on Wikipedia's content assessment scale. It is of interest to the following WikiProjects:

Cryptography: Computer science Low‑importance This article is within the scope of WikiProject Cryptography, a collaborative effort to improve the coverage of Cryptography on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.CryptographyWikipedia:WikiProject CryptographyTemplate:WikiProject CryptographyCryptography articles Low This article has been rated as Low-importance on the importance scale. This article is supported by WikiProject Computer science (assessed as Low-importance). Computing: Software Low‑importance This article is within the scope of WikiProject Computing, a collaborative effort to improve the coverage of computers, computing, and information technology on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.ComputingWikipedia:WikiProject ComputingTemplate:WikiProject ComputingComputing articles Low This article has been rated as Low-importance on the project's importance scale. This article is supported by WikiProject Software (assessed as Low-importance). This article is supported by WikiProject Computer Security (assessed as Mid-importance). Things you can help WikiProject Computer Security with: edit history watch purge Article alerts will be generated shortly by AAlertBot. Please allow some days for processing. More information... Answer question about Same-origin_policy Review importance and quality of existing articles Identify categories related to Computer Security Tag related articles Identify articles for creation (see also: Article requests) Identify articles for improvement Create the Project Navigation Box including lists of adopted articles, requested articles, reviewed articles, etc. Find editors who have shown interest in this subject and ask them to take a look here.

The creator of the article seem to be coining words, and it's done terrible compared to DWARF.

From the explanation of the article, I feel this "pepper" is not so much different from salt in a cryptographical sense, and given that no source has been cited, this article probably should be removed.

Dannyniu (talk) 06:42, 15 August 2016 (UTC)[reply]

It is completely different to cryptographic salt. This topic is not covered that often and so many people who use salted hashes don't know about peppering unless specifically taught it.

I've actually looked for resources about peppering before, and couldn't find any well put together articles on it. This article is very helpful to explain to people what peppering is.

interkin (talk) 2:42, 23 May 2017 (UTC)

Unfortunately, although it might be helpful to explain what people think "peppering" is, use of a pepper is not a generally accepted as good practice in cryptography (unlike a salt, which is essential). As far as I can tell, the term pepper as it is commonly used, was collectively coined by amateurs who recently learned what a "salt" is (and frequently don't understand even that fully), and got way to excited about their new knowledge and wanted to apply the naming convention to their own inventions, which are not proven and often weaken security. The fact that this article has not been deleted yet makes me question the general accuracy of all of Wikipedia. This article is dangerous as anyone attempting to implement this concept will create a very insecure system. This article should either be deleted immediately or a clear warning about the dangers of a "pepper" being added to the article. Prushik (talk) 03:05, 19 January 2018 (UTC)[reply]

Please note that while this article seems to have been greatly approved (its at least internally consistent now, the example actually matches the description), it still has the enormous problem of describing something that is completely made up. The only cited source does seem to be a reliable source and describes something pretty close to what is described here, yet after carefully reading the source it never uses the term "pepper". Anybody wonder why? It's because "pepper" is not an accepted cryptographic term or concept. If it were, there would be no shortage of good sources since password hashing is hardly an obscure topic. Prushik (talk) 21:22, 12 November 2019 (UTC)[reply]

Pepper can mean one of two things:

• A hardcoded secret that is the same for all passwords. For example mentioned in the article about Dropbox password hashing.
• A random secret that is not stored, and has to be brute-forced for every password. The name "pepper" was defined in the paper "Brute Force Attack on UNIX Passwords with SIMD Computer".

Sjoerd (talk) 12:54, 12 December 2016 (UTC)[reply]

The definition of pepper as random values that the code validating a hash must iterate through is not common, particularly with the introduction of hashing algorithms with cost parameters. At face value, this particular paper doesn't even offer that definition: it only actually equates pepper to a "secret salt" and describes one way to implement it. I don't have access to the paper it in turn cites, but that doesn't mention the word pepper in its abstract. Ms7821 (talk) 16:51, 24 September 2017 (UTC)[reply]

As for Sjoerd's citation, that also doesn't define pepper bits as discarded, only in their implementation. I wonder if it's worth only defining pepper as complementary to a salt (and therefore coined repeatedly over the years). I'm concerned that recent articles (like the Dropbox one) may be hedging their wording based on this article's over-precise claims. Ms7821 (talk) 17:00, 24 September 2017 (UTC)[reply]

OK, I've made a bunch of changes. Hopefully that improves things Ms7821 (talk) 18:36, 24 September 2017 (UTC)[reply]

Although the overall explanation about pepper as an additional security feature in terms of salt&pepper might be ok, the example and it's explanation is choosen poorly. Using a salt is to make hashes more unique and thereby hide the information if two users may used the same password - that's what a salt is meant to mitigate. As it's explained, the pepper shpuld prevent rainbow a database as it's not stored in it but in a file as example. So, a better example would be: "passwird + salt + pepper". The proof could be: 1) the different salt hides that both users use the same password and the pepper, as stored elsewhere, prevent rainbow attacks when the database gets leaked. As now the example even weakens the security as it's compareable to use same salt twice, wich in fact has the same level of security than not using a salt at all. Also it's only very specific in the scenario about leaking a database and hence prevent rainbow attacks by storing the pepper outside of it. This could also be generalized as salt and pepper in terms of cryptographic hashing can be used differently. 2A0C:D242:4434:200:159F:2EE0:30E:F319 (talk) 20:11, 30 September 2019 (UTC)[reply]

A "unique pepper per user" is called a "salt". This section should be removed, and the "types of peppers" section should be updated as well. This article continues to be incorrect and misleading. Prushik (talk) 18:30, 19 December 2022 (UTC)[reply]