Salt & PasswordsPasswords are typically converted to a hash value for storage on disk or a database. In this way, if an attacker accesses the passwords, they can't be used to access systems. Reversing a hash value is extremely difficult. The most common approach that attackers take is to use a rainbow table that contains hash codes for common passwords. Adding salt to a password renders a rainbow table useless even if the salt is known to the attacker.
|Overview: Cryptographic Salt|
Random data that is added to data before hashing.
Makes hash values more difficult to reverse, even when the salt is known.