Practice free →
HomeB.Tech Cyber SecuritycybersecurityCryptography › A SALT in password hashing is

A SALT in password hashing is

Aa kitchen flavour enhancer only
Ba backup of the original password
Ca faster hash algorithm variant
Drandom per-user value mixed into hash input
Answer & Solution
Correct answer: D. random per-user value mixed into hash input
1. SALT: a random value added to a password before hashing. Each user gets a UNIQUE salt. 2. PURPOSE 1: prevents RAINBOW TABLES — precomputed tables that map common password hashes back to plaintexts. With a unique salt, a rainbow table for plain 'password123' is useless. 3. PURPOSE 2: prevents identifying that two users have the SAME password (their salted hashes differ). 4. The salt is stored ALONGSIDE the hash in the database; it doesn't need to be secret, just unique and random. 5. Modern password hashing functions (bcrypt, Argon2, scrypt) embed a salt automatically — but legacy systems need explicit salt handling. _Source: NIST SP 800-63B (Digital Identity Guidelines) + Boneh & Shoup §8.2._
Solve this in the app — B.Tech Cyber Security practice & 24k+ MCQs →
Related questions