Changes the hash algorithm to PBKDF2 (using SHA-256 for hash function) The number of iterations and salt value can optionally be specified. The default number of iterations is 10,000.
PBKDF2 is a suitable algorithm for password hashing. When hashing passwords, the bigger the iteration number is the more secure the hash function is, but it must be balanced with usability. Higher number of iteration takes longer, so choose a value that will not severely affect the usability of your website. Ask the question, would my customers accept the login process that takes longer than say 2 seconds.