I have read from this article http://codahale.com/how-to-safely-store-a-password/ and it says using a salt isn't even safe against GPU brute force attacks. I don't want to get hacked and have passwords decrypted in a few weeks... So I read some more and the solution was bcrypt
however I don't want to implement the phpass class
, I like SHA-512.
However if one can add rounds to sha-512 to slow down GPU attacks... how can that be done? Does rounds mean iterations?
How do you add rounds to slow down sha512?