Given a bcrypt password (the hash) and the secret key, and reasonably high complexity settings, would it be safe to assume that it wouldn’t be practical to bruteforce that data?
I’m wondering how a system could be built in which we don’t know details of reports for ugly mugs, but so that those lists can be shared. It must be searchable by those fields
That is, the way current ugly mugs systems work is by individuals sharing details in mailing lists, spreadsheets and private facebook groups (this is becoming ever more prevalent) — the main problem with this is the data privacy, I don’t think majority of providers link to a privacy policy in their ads, hence violating GDPR
So the question is, how can we store that data in a secure way, and allow it to be federated / distributed for resiliency without violating laws or breaching privacy?
SA adjacent Show more
