I’m working on a Node.js app that requires securely storing hashed passwords. I’ve read about both PBKDF2 and Argon2 but am not sure which is better suited for modern password hashing needs.
What are the pros and cons of each in terms of security and performance, especially regarding resistance to brute-force attacks? If you have experience with either, I’d appreciate any insights on which to choose and why.