ASP.NET MVC 4 Hash algorithm

Question

Which Hash algorithm is being used by default in ASP.NET MVC 4 when using asp.net identity. How does it work? How secure is it?

Possible duplicate of [ASP.NET Identity default Password Hasher, how does it work and is it secure?](http://stackoverflow.com/questions/20621950/asp-net-identity-default-password-hasher-how-does-it-work-and-is-it-secure) — trailmax, Nov 19 '16 at 22:24

score 1 · Accepted Answer · edited May 23 '17 at 12:13

1

ASP.NET Identity uses PBKDF2. It is implemented using Rfc2898DeriveBytes.

This answere goes into some details of the how and why. This is a very broad question and the answer can span many many pages. Perhaps you can google about the specifics yourself. I tried googling and there is a ton you can read about depending on your level of curiosity.

edited May 23 '17 at 12:13

Community

1
1

answered Nov 19 '16 at 17:59

CodingYoshi

25,467
4
62
64

ASP.NET MVC 4 Hash algorithm

1 Answers1