Originally Posted by
laserlight
Ah. From what I understand though, this idea of a "rounds" or "cost" or "work factor" parameter goes back to the key stretching idea applied to make using the old cryptographic hashes stronger when applied for password hashing. So while it works, why I mentioned argon2 and scrypt is because they go beyond this to the idea of memory-hard algorithms, i.e., not only do we force attackers to have to say, buy an array of FPGAs to succeed against CPU-hardness due to the configurable number of rounds, but now they have to contend with the configurable memory requirements, and of course pay for all that electricity. Does Finabel have this property too, or can it be adapted for that?