Just a note that I've put up a class up that allows you to use the scrypt hashing algorithm for things like password storage. It extends Phalcon\Security and uses the same MCF as wg/scrypt does (the main Java implementation). Scrypt was designed to be more resistant to brute-force attacks than bcrypt. The PECL extension is required to be installed. If there is any interest, I will add getters/setters for the various parameters as opposed to having the defaults in the hash call definition.
https://packagist.org/packages/moderndeveloperllc/phalconscrypt
More info on scrypt from the developer: https://www.tarsnap.com/scrypt.html
