Argon2 password with php

[nimasdj]

@ircmaxell Hi,

Would consider to provide a php code to generate Argon2i and Argon2d password? Right now, it seems only C version is available and not php.

[ircmaxell]

not in pure PHP, but perhaps as an extension.

With pure PHP it would simply be too slow and hence sacrifice a significant margin of security (giving an attacker more advantage)

[nimasdj]

Hi,

Is Argon2 stronger than password_hash? If yes, is PHP considering to make Argon2 as a function or extension?

[ircmaxell]

Argon2 is stronger than bcrypt. And yes, it is being worked on for 7.1, and would be the default algorithm for the release after that (7.2 or 8).

[indolering]

@ircmaxell I'm interested in getting server relief working. Where's the best place to discuss the implementation side?