What is Hashing?
Turkish: Hashing
Hashing is a one-way process that turns data into a fixed-length digest for password storage and integrity checks.
What is Hashing?
Hashing produces a fixed-length digest from input data of any size. The same input should produce the same hash, while a small input change should create a very different output.
Hashing is not encryption. Encrypted data can be decrypted with a key; a secure hash is intended to be one-way. That difference matters for password storage, file integrity, and signature verification.
How Does It Work?
General-purpose hash functions such as SHA-256 are used for file or message integrity. For password storage, fast hashing is not enough because attackers can try large numbers of guesses quickly. Algorithms such as bcrypt, Argon2, or PBKDF2 deliberately slow down guessing and use salts.
A salt prevents two users with the same password from producing the same stored hash. A pepper can add an application-side secret, but it introduces key management responsibilities.
Business Use
Hashing is used to avoid storing plain-text passwords, verify downloaded files, validate webhook signatures, and mask sensitive values during data matching. Choosing the wrong algorithm can significantly increase risk after a password database leak.
bcrypt is one of the algorithms designed specifically for password storage. It should not be confused with encryption: encryption is used when data must be read back, while hashing is used for verification or integrity.
Related Terms
bcrypt hashes passwords with salts and an adjustable cost factor, making brute-force attacks harder after a data leak.
EncryptionEncryption turns readable data into a cryptographic form that only authorized parties can decrypt using the right key and algorithm.
Webhook SecurityWebhook security verifies incoming event callbacks with signatures, timestamps, replay protection, and strict endpoint controls.