Review and sign transactions from a single secure screen with Ledger Flex™

Discover now

Up your Web3 game

Ledger Academy Quests

  • Test your knowledge
  • Earn POK NFTs
Play now See all quests

Salt

Mar 26, 2025 | Updated Mar 26, 2025
Salt is a security technique that resists exploits by adding random data to passwords or other sensitive information before hashing them.

Salt is a security technique that resists exploits by adding random data to passwords or other sensitive information before hashing them.

What Is a Salt?

A salt is a random string of characters that’s added to input data (typically passwords) before applying a hashing algorithm. This critical security measure ensures that identical inputs will produce different hash outputs, significantly enhancing data protection.

The process called “salting” strengthens security by making each instance of the same password unique in a database. Without salting, identical passwords would generate identical hashes, creating vulnerability patterns that attackers could exploit.

Imagine you create a new wallet address or user account and you select the password, “1234”. If this unsalted password were to be hashed, the output value would be the same for every user with the same “1234” password. In this case, it would be easy for attackers to identify matching hashes. Hence, a salt is added to your password before it is hashed. The salt and hash are then stored together, making it possible for the system to verify the password later on. 

Salting in Crypto

Salting is useful in blockchain applications requiring passwords, as it can make attacks computationally expensive. Since rainbow tables only contain precalculated hashes for common input data, an attacker will have to create a new rainbow table for each hash value to succeed.

By the same token, salting can also be used to enhance smart contract security by ensuring that sensitive data is protected. 

Proof-of-work mining algorithms actually add a random value known as a cryptographic nonce, which functions the same way as a salt, to a hashed value. Miners must decode the nonce value to find a hash that matches the difficulty target for the right to create the next block and earn rewards.

Furthermore, salting prevents duplicate hashes, safeguarding against dictionary attacks. This is because, even if multiple users use the same input data to create a cryptocurrency account password, the produced hash value will be different due to unique salts.

Zero-Knowledge Proof

A Zero-knowledge proof (ZKP) is a type of secure verification that allows one party to prove the validity of something, without having to reveal any personal details, passwords, or statements. In the context of blockchain…

Full definition

Decentralized Exchange (DEX)

A decentralized exchange (DEX) is a peer-to-peer marketplace that allows users to directly trade with each other. It doesn’t need a custodian or intermediary to hold the users’ funds or facilitate transactions.

Full definition

Mining

Mining is the process of confirming and validating transactions and adding them to a proof-of-work blockchain.

Full definition

Own your crypto future

Stay informed with security tips, updates, and exclusive offers from Ledger

Your email address will only be used to send you our newsletter, as well as updates and offers. You can unsubscribe at any time. Learn more

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.