Continue reading on DataGuidance with:
Free Member
Limited ArticlesCreate an account to continue accessing select articles, resources, and guidance notes.
Already have an account? Log in
Create an account
Join our community for free to access exclusive whitepapers, reports, and regulatory information.
Italy: Garante publishes guidelines on password retention
On March 1, 2024, the Italian data protection authority (Garante) published its password retention guidelines. According to the Garante, the guidelines are aimed at all companies and administrations that store the passwords of users on their systems. The guidelines provide recommendations on the cryptographic functions currently considered most secure for storing passwords.
The guidelines discuss password hashing (to include pepper techniques), password-based key derivation function 2 (PBKDF2), and Aragon2.
You can read the press release here and the guidelines here, both only available in Italian.
Send us your Feedback!
Please let us know what you think of DataGuidance! It will only take 60 seconds and help us make the site better for you.
