The memory-hard Argon2 password hash and proof-of-work function

The information below is for an old version of the document
Document Type Expired Internet-Draft (cfrg RG)
Last updated 2019-06-12 (latest revision 2018-11-23)
Replaces draft-josefsson-argon2
Stream IRTF
Intended RFC status Informational
Expired & archived
pdf htmlized (tools) htmlized bibtex
IETF conflict review conflict-review-irtf-cfrg-argon2
Stream IRTF state Waiting for Document Shepherd
Revised I-D Needed
Consensus Boilerplate Yes
Document shepherd No shepherd assigned
IESG IESG state Expired
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


This document describes the Argon2 memory-hard function for password hashing and proof-of-work applications. We provide an implementer- oriented description together with sample code and test vectors. The purpose is to simplify adoption of Argon2 for Internet protocols.


Alex Biryukov (
Daniel Dinu (
Dmitry Khovratovich (
Simon Josefsson (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)