IT & Developers

Bcrypt Cost Calculator - Find optimal bcrypt cost factor for your system

Find optimal bcrypt cost factor for your system

Created and maintained by: CalcTago Editorial TeamLast updated: 2026-02-09

Formulas and edge cases are reviewed against authoritative references before publication. For methodology, editorial standards, or corrections, use the links below.

Methodology About CalcTago Contact

Region

Target Hash Time

Test Password

Recommended Cost Factor

Estimated Hash Time

100ms

Brute Force Time (6 char)

~180.1y (single core)

Security Notes

Aim for 100-250ms per hash in production. Increase cost as hardware improves.

Cost Factor Benchmarks

Cost: 825 ms

Cost: 950 ms

Cost: 10100 ms

Cost: 11200 ms

Cost: 12400 ms

Cost: 13800 ms

Cost: 141600 ms

Loading calculator...

Frequently asked questions

What is cost factor?

Number of iterations = 2^cost. Higher cost = slower hash = more secure but slower logins.

What cost should I use?

Target ~250ms hash time. In 2024, cost 12-14 is typical for modern servers.

Why not maximum cost?

Too slow impacts user experience and can enable DoS attacks via login attempts.

About this tool

This Bcrypt Cost Calculator turns your inputs into practical results. Provide Cost, Target Hash Time, and Test Password to calculate Recommended Cost Factor and Estimated Hash Time.

Adjust values to compare scenarios and see how sensitive the result is. The calculation uses the numbers as entered, so double-check units and expect small differences from rounding in the displayed totals.

Frequently asked questions

What is cost factor?

What cost should I use?

Why not maximum cost?

Related tools

About this tool