mysql_native_password

Giriş

1. mysql_native_password

Açıklaması şöyle. mysql_native_password MySQL 9 ile kaldırıldı

Previously, MySQL 5.6/5.7 used mysql_native_password as the default password plugin. The mysql_native_password plugin does not require an encrypted connection.

This plugin is very fast in authentication but not secure enough because it uses the SHA1 algorithm, which has been recommended against by NIST (National Institute of Standards and Technology) due to its vulnerability to attacks.

2. sha256_password 

Daha sonra sha256_password geldi. Açıklaması şöyle

Since MySQL 5.6, a more secure authentication mechanism was introduced: the sha256_password authentication plugin. It uses a salted password for multiple rounds of SHA256 hashing (thousands of rounds), making brute-force attacks much harder and ensuring more secure hash transformations.

However, establishing a secure connection and multiple rounds of hash encryption are time-consuming, offering higher security but slower authentication speed.

3. caching_sha2_password 

Açıklaması şöyle

MySQL aimed to combine the advantages of both methods. In MySQL 8.0.3, a new authentication plugin caching_sha2_password was introduced as an alternative to sha256_password.

Açıklaması şöyle

Since MySQL 8.0.4, the default authentication plugin has been changed from mysql_native_password to caching_sha2_password. Accordingly, libmysqlclient also uses caching_sha2_password as the default authentication mechanism.