Salting your Hashes: Modern Password Storage

The Blog of Tom Webster


Just a quick presentation for the Ohio InfoSec Forum holiday meeting.

Writing a web app? Storing user passwords? Don’t ever store them in plain text, you already know this. But do you know how to securely hash them? Here’s a very basic look at salted hashes and how they improve security.


Tom Webster is an IT grunt, VPN admin, Security Lead, Programmer, and general tech guy at BWI Group. He’s constantly breaking, fixing, and researching things as well as ranting over at and his Google Plus profile. Tom has a secret love of cooking while wearing Google Glass and can make a damn good pot roast.


You can download this whole talk on Google Drive right here.

If you’d like to embed this talk (like I did on this page), head over to this talk on SpeakerDeck to see PDF download options, embed code, and other cool stuff.


I made the slide content, used a stock theme from Google Drive Presentations, and stole the image of the salt shaker from Google Images (from this page).

Author: Tom “SamuraiLink3” Webster

License: CC BY-SA 4.0