Here is an articlewhich lists the times taken on a Mac laptop with a Core 2 Duo processor. So, yes, Bcrypt is likely to be very slow on a mobile device.

这是一篇文章，其中列出了在配备 Core 2 Duo 处理器的 Mac 笔记本电脑上花费的时间。所以，是的，Bcrypt 在移动设备上可能会很慢。

Another common problem is the initialization of SecureRandomwhich can be very slow and may also hang due to the lack of enough random data. This will vary between different machines and operating systems. You'll find plenty of discussion of that elsewhere, but it's something you might want to test either initializing it yourself using new SecureRandom()or by calling gensaltseparately to isolate the random data generation and then just time the call to hashpw.

另一个常见的问题是它的初始化SecureRandom可能很慢，也可能由于缺乏足够的随机数据而挂起。这将因不同的机器和操作系统而异。您会在其他地方找到大量有关此问题的讨论，但您可能想要测试自己使用初始化new SecureRandom()或gensalt单独调用以隔离随机数据生成，然后仅对调用hashpw.

Another question is why you actually want to hash it on the client? If you are storing it on the client and logging in locally, then that may make some sense, but if it is being sent to a server and a normal login involves sending a plaintext password to the server then you aren't gaining anything. Also, a common misconception is that hashing a password before sending it to the server (when logging in) offers some protection, when in fact it is equivalent to sending the plaintext password. An attacker only has obtain the hash to be able to gain access.

另一个问题是为什么你真的想在客户端上散列它？如果您将它存储在客户端并在本地登录，那么这可能有一定的意义，但是如果它被发送到服务器并且正常登录涉及向服务器发送明文密码，那么您将一无所获。此外，一个常见的误解是，在将密码发送到服务器（登录时）之前对其进行散列可以提供一些保护，而实际上它等同于发送明文密码。攻击者只有获得哈希才能获得访问权限。

Hashing passwords is a means of preventing an attacker from gaining access (or at least slowing them down) should the password store itself be compromised.

如果密码存储本身遭到破坏，散列密码是一种防止攻击者获得访问权限（或至少减慢他们的速度）的方法。

So if the password is stored on the server, it should be sent in plaintext (over a secure channel) and the server should make the decision on how it is hashed.

因此，如果密码存储在服务器上，则应以明文形式（通过安全通道）发送，服务器应决定如何对其进行散列。