Review and sign transactions from a single secure screen with Ledger Flex™

Discover now

Up your Web3 game

Ledger Academy Quests

  • Test your knowledge
  • Earn POK NFTs
Play now See all quests

Salt

Mar 26, 2025 | Updated Mar 26, 2025
Salt is a security technique that resists exploits by adding random data to passwords or other sensitive information before hashing them.

Salt is a security technique that resists exploits by adding random data to passwords or other sensitive information before hashing them.

What Is a Salt?

A salt is a random string of characters that’s added to input data (typically passwords) before applying a hashing algorithm. This critical security measure ensures that identical inputs will produce different hash outputs, significantly enhancing data protection.

The process called “salting” strengthens security by making each instance of the same password unique in a database. Without salting, identical passwords would generate identical hashes, creating vulnerability patterns that attackers could exploit.

Imagine you create a new wallet address or user account and you select the password, “1234”. If this unsalted password were to be hashed, the output value would be the same for every user with the same “1234” password. In this case, it would be easy for attackers to identify matching hashes. Hence, a salt is added to your password before it is hashed. The salt and hash are then stored together, making it possible for the system to verify the password later on. 

Salting in Crypto

Salting is useful in blockchain applications requiring passwords, as it can make attacks computationally expensive. Since rainbow tables only contain precalculated hashes for common input data, an attacker will have to create a new rainbow table for each hash value to succeed.

By the same token, salting can also be used to enhance smart contract security by ensuring that sensitive data is protected. 

Proof-of-work mining algorithms actually add a random value known as a cryptographic nonce, which functions the same way as a salt, to a hashed value. Miners must decode the nonce value to find a hash that matches the difficulty target for the right to create the next block and earn rewards.

Furthermore, salting prevents duplicate hashes, safeguarding against dictionary attacks. This is because, even if multiple users use the same input data to create a cryptocurrency account password, the produced hash value will be different due to unique salts.

Maximal Extractable Value (MEV)

Maximal extractable value (MEV) is the maximum value block producers (miners or validators) can obtain by including, reordering, or excluding transactions when producing a new block.

Full definition

Wallet Address

A wallet address is a randomly generated string of characters used to send or receive digital assets.

Full definition

Delegator

A delegator is a network participant who assigns their economic stake to a network validator in a proof-of-stake (PoS) or delegated proof-of-stake (DPoS) blockchain.

Full definition