You'll want to ofc 'salt' customers passwords prior to hashing them to stop with the ability to Get better the original password from the hash. $endgroup$ It should be CPU-heavy to make brute drive assaults harder/difficult, in case your database will be leaked. Based on the in