Review and sign transactions from a single secure screen with Ledger Flex™

Discover now

Up your Web3 game

Ledger Academy Quests

  • Test your knowledge
  • Earn POK NFTs
Play now See all quests

Salt

Mar 26, 2025 | Updated Mar 26, 2025
Salt is a security technique that resists exploits by adding random data to passwords or other sensitive information before hashing them.

Salt is a security technique that resists exploits by adding random data to passwords or other sensitive information before hashing them.

What Is a Salt?

A salt is a random string of characters that’s added to input data (typically passwords) before applying a hashing algorithm. This critical security measure ensures that identical inputs will produce different hash outputs, significantly enhancing data protection.

The process called “salting” strengthens security by making each instance of the same password unique in a database. Without salting, identical passwords would generate identical hashes, creating vulnerability patterns that attackers could exploit.

Imagine you create a new wallet address or user account and you select the password, “1234”. If this unsalted password were to be hashed, the output value would be the same for every user with the same “1234” password. In this case, it would be easy for attackers to identify matching hashes. Hence, a salt is added to your password before it is hashed. The salt and hash are then stored together, making it possible for the system to verify the password later on. 

Salting in Crypto

Salting is useful in blockchain applications requiring passwords, as it can make attacks computationally expensive. Since rainbow tables only contain precalculated hashes for common input data, an attacker will have to create a new rainbow table for each hash value to succeed.

By the same token, salting can also be used to enhance smart contract security by ensuring that sensitive data is protected. 

Proof-of-work mining algorithms actually add a random value known as a cryptographic nonce, which functions the same way as a salt, to a hashed value. Miners must decode the nonce value to find a hash that matches the difficulty target for the right to create the next block and earn rewards.

Furthermore, salting prevents duplicate hashes, safeguarding against dictionary attacks. This is because, even if multiple users use the same input data to create a cryptocurrency account password, the produced hash value will be different due to unique salts.

Wallet Address

A wallet address is a randomly generated string of characters used to send or receive digital assets.

Full definition

Move-to-Earn

Move-to-Earn is a concept in the Web3 ecosystem through which people are rewarded for physical activities like walking, jogging, and running.

Full definition

Vaporware

Vaporware refers to a blockchain project that fails to come to fruition after its initial announcement and never gets released.

Full definition