diff --git a/Server/README.md b/Server/README.md
index e6c3045..73e30e6 100644
--- a/Server/README.md
+++ b/Server/README.md
@@ -90,10 +90,12 @@ Todo
 ## secret.json 
 ```json
 {
-    "mongo": "mongodb://localhost:27017/words"
+    "mongo": "mongodb://localhost:27017/words",
+    "salt": "dimigo"
 }
 ```
 
 - `mongo`: mongo connection string
+- `salt`: scrypt에 사용되는 salt
 
-위 형식으로 mongo connection string을 포함하는 `secret.json` 파일을 만들어 두어야 한다.
+위 형식으로 `secret.json` 파일을 만들어 두어야 한다.
diff --git a/Server/package.json b/Server/package.json
index 6a6ab9d..8a8b2cd 100644
--- a/Server/package.json
+++ b/Server/package.json
@@ -19,6 +19,7 @@
     "mongoose": "^5.4.19",
     "mongoose-paginate": "^5.0.3",
     "morgan": "^1.9.1",
+    "scryptsy": "^2.0.0",
     "uglify-js": "^3.4.10"
   }
 }
diff --git a/Server/routes/auth/login.js b/Server/routes/auth/login.js
index 80b276d..1065248 100644
--- a/Server/routes/auth/login.js
+++ b/Server/routes/auth/login.js
@@ -4,6 +4,10 @@ var router = express.Router()
 var User = require('../../models/users.js')
 var auth = require('../../auth.js')
 
+var scrypt = require('scryptsy')
+const secret = require('./../../secret.json')
+// scrypt(key, secret.salt, 8192, 5, 1, 25).toString('hex')
+
 // check user data and create access token
 router.post('/', (req, res) => {
   var email = req.body.email