Crypto

Configuring Cryptography

R2R supports two of the main python cryptography providers.

Cryptography Configuration

To customize the crypto provider, you can modify the crypto section in your TOML configuration file. Learn more about working with R2R config files.

bcrypt

The Python bcrypt library provides “acceptable password hashing for your software and your servers.” It’s specifically designed for secure password storage and is resistant to brute force attacks due to its adaptive work factor. While bcrypt is excellent for password hashing, it has a more limited cryptographic scope compared to NaCL.

NaCL

PyNaCl is a Python binding to libsodium, which is a fork of the Networking and Cryptography library. It is recommended to utilize NaCL in production deployments for enhanced security.