You can probably just use
argon2.PasswordHasher with its default values and be fine.
But it’s good to double check using
argon2_cffi’s CLI client, whether its defaults are too slow or too fast for your use case.
Finding the right parameters for a password hashing algorithm is a daunting task. The authors of Argon2 specified a method in their paper, however some parts of it have been revised in the RFC draft for Argon2 that is currently being written.
The current recommended best practice is as follow:
Choose whether you want Argon2i, Argon2d, or Argon2id (
type). If you don’t know what that means, choose Argon2id (
Figure out how many threads can be used on each call to Argon2 (
parallelism, called “lanes” in the RFC). They recommend twice as many as the number of cores dedicated to hashing passwords.
PasswordHasherwill not determine this for you and use a default value that you can find in the linked API docs.
Figure out how much memory each call can afford (
memory_cost). The RFC recommends 4 GB for backend authentication and 1 GB for frontend authentication. The APIs use Kibibytes (1024 bytes) as base unit.
Select the salt length. 16 bytes is sufficient for all applications, but can be reduced to 8 bytes in the case of space constraints.
Choose a hash length (
hash_len, called “tag length” in the documentation). 16 bytes is sufficient for password verification.
Figure out how long each call can take. One recommendation for concurent user logins is to keep it under 0.5 ms. The RFC recommends under 500 ms. The truth is somewhere between those two values: more is more secure, less is a better user experience.
argon2_cffi’s defaults try to land somewhere in the middle and aim for ~50ms, but the actual time depends on your hardware.
Please note though, that even a verification time of 1 second won’t protect you against bad passwords from the “top 10,000 passwords” lists that you can find online.
Measure the time for hashing using your chosen parameters. Find a
time_costthat is within your accounted time. If
time_cost=1takes too long, lower
argon2_cffi’s CLI will help you with this process.