Security Consideration

This page explains the main motivation for choosing scrypt and keccak256 to implement a password-only crypto wallet.

Scrypt

Scrypt is chosen for its resistance to brute-force attacks. It is a memory-hard function, meaning it requires significant memory to compute, making it impractical to perform large-scale hardware attacks. Here are some key points about Scrypt:

  1. Memory-Hard Algorithm: Increases the difficulty and cost of brute-force attacks.

  2. Time-Consuming: Slows down the process of guessing passwords.

  3. Widely Trusted: Used in various secure applications and cryptocurrencies.

Keccak256

Keccak256, the hash function used in Ethereum, provides robust cryptographic security. Here’s why it is an excellent choice:

  1. Cryptographic Security: Resistant to pre-image and collision attacks.

  2. Efficiency: Fast and efficient hashing.

  3. Widely Adopted: Standard for blockchain applications, ensuring compatibility and security.

Combining Scrypt and Keccak256 ensures that both the password and wallet generation processes are secure, making it extremely difficult for attackers to compromise the system.

PreviousArchitectureNextBrute Force Attack

Last updated