Crypto
Configuring Cryptography
R2R supports two of the main python cryptography providers.
Cryptography Configuration
To customize the crypto provider, you can modify the crypto
section in your TOML configuration file. Learn more about working with R2R config files.
bcrypt
The Python bcrypt library provides “acceptable password hashing for your software and your servers.” It’s specifically designed for secure password storage and is resistant to brute force attacks due to its adaptive work factor. While bcrypt is excellent for password hashing, it has a more limited cryptographic scope compared to NaCL.
NaCL
PyNaCl is a Python binding to libsodium, which is a fork of the Networking and Cryptography library. It is recommended to utilize NaCL in production deployments for enhanced security.