Discussion : Password Storage
Currently, we are using Cakephp 3.x DefaultPasswordHasher() for storing passwords.
We are planning to implement method discuss in this article https://nakedsecurity.sophos.com/2013/11/20/serious-security-how-to-store-your-users-passwords-safely/.
If Cakephp DefaultPasswordHashers() is not quite strong, then we can discuss the method to replace it.
Source: #107 (comment 348559111)
Linked Issues
PS: We had a discussion on #107, please first go through it too.