the.com/key stretching
taking a weak password and making it sweat before it's allowed near your data.
means a technique that deliberately slows down password hashing so attackers guessing millions of passwords per second get stuck guessing thousands instead.
from coined in the late 1990s cryptography circles, formalized by algorithms like PBKDF2 (2000) which repeatedly rehash a password thousands of times, turning a fast operation into a deliberately expensive one.
core trickhash the hash thousands of times, on purpose
famous algorithmsPBKDF2, bcrypt, scrypt, argon2 all do this
tradeoffslows down you and the attacker equally
why it mattersturns a cracked leak into a stalled one