# What is SHA-256? > SHA-256 is a cryptographic hash function from the SHA-2 family that produces a fixed 256-bit (32-byte) digest from any input, widely used for data integrity verification and digital signatures. - URL: https://www.browserutils.dev/glossary/sha-256 - Published: 2026-03-21 - Updated: 2026-03-16 --- **SHA-256 (Secure Hash Algorithm 256-bit)** is a cryptographic hash function from the SHA-2 family, designed by the NSA and standardized by NIST in FIPS 180-4. It produces a fixed 256-bit (32-byte) digest from any input and is a one-way function — you cannot reverse the hash to recover the original data, even with unlimited time. ## How it works SHA-256 processes input in 512-bit blocks through 64 rounds of bitwise operations, modular addition, and compression. Regardless of whether the input is a single character or a 10GB file, the output is always a 64-character hexadecimal string. ``` Input: "hello" SHA-256: 2cf24dba5fb0a30e26e83b2ac5b9e29e1b161e5c1fa7425e73043362938b9824 ``` Changing even one bit of input produces a completely different hash (the avalanche effect). This makes SHA-256 useful for detecting tampering. ## Why developers use SHA-256 SHA-256 is the workhorse of modern cryptography. Its applications include: - **Data integrity**: Checksums for file downloads, package managers (npm, pip), and Docker images use SHA-256 to verify nothing was altered in transit. - **Digital signatures**: TLS certificates, code signing, and Git commits rely on SHA-256 to ensure authenticity. - **Blockchain**: Bitcoin's proof-of-work algorithm is built on double SHA-256 hashing. - **API authentication**: HMAC-SHA256 is a standard method for signing API requests (used by AWS, Stripe, and others). - **Content addressing**: Systems like IPFS and Git use hashes to identify content by its digest rather than its location. ## SHA-256 vs. MD5 MD5 is faster but cryptographically broken — collision attacks are practical and well-documented. SHA-256 has no known collision attacks and is recommended by NIST for security-sensitive applications. If you're choosing between them, use SHA-256. ## SHA-256 for passwords? Don't hash passwords with raw SHA-256. It's too fast — attackers can brute-force billions of hashes per second with GPUs. Use a purpose-built password hashing function like bcrypt, scrypt, or Argon2 that includes salting and deliberate slowness. Generate SHA-256 hashes with the [SHA-256 Hash Generator](/tools/sha256-hash-generator), or compute hashes with multiple algorithms using the [Hash Generator](/tools/hash-generator). Verify file integrity with the [Checksum Calculator](/tools/checksum-calculator).