diff --git a/auth/src/opaque.rs b/auth/src/opaque.rs index 7648d58..571c3b8 100644 --- a/auth/src/opaque.rs +++ b/auth/src/opaque.rs @@ -15,6 +15,11 @@ pub type KeyPair = opaque_ke::keypair::KeyPair<::Gr /// A wrapper around argon2 to provide the [`opaque_ke::slow_hash::SlowHash`] trait. pub struct ArgonHasher; +/// The Argon hasher used for bruteforce protection. +/// +/// Note that it isn't used to "hash the passwords", so it doesn't need a variable salt. Instead, +/// it's used as part of the OPAQUE protocol to add a slow hashing method, making bruteforce +/// attacks prohibitively more expensive. impl ArgonHasher { /// Fixed salt, doesn't affect the security. It is only used to make attacks more /// computationally intensive, it doesn't serve any security purpose.