Salts & hashing for passwords

Good evening all,

I’ve been revisiting Thom McGrath’s article regarding salting and hashing of passwords in Xojo here

I have set this up and used it successfully a couple of times and have no issue with how it works.

My question is this : Is there any signficant benefit to be gained from increasing the ByteCount (recommended at 64 in the article) or should I leave that alone and just use a really high iteration count ?


I don’t think so.

64 bytes is a lot to guess to find the right solution.
So probably nobody will do that.

That adds up, thanks Christian.