Password Encryption
1 posts in topic
Flat View  Flat View
TOPIC ACTIONS:
 

Posted By:   sunny_rk
Posted On:   Friday, July 30, 2004 07:15 AM

Hi all,

In standalone java application, we have password, just disabled to '*', on the screen, but once the dialog is submitted, it goes to Database as plain text, and a developer, working at the database side , can very well see the password.

I am working on password encryption for this problem. So can anybody give me code for doing this, which uses AES algorithm.

Re: Password Encryption

Posted By:   Anand_Rajasekar  
Posted On:   Thursday, August 19, 2004 09:03 AM

even if you encrypt it one can decrypt to get the password.
most places people store a hash of the password in the database. Use a hashing algorithm like hmacsha1. Everytime hash the password and compare the contents in the database.
even if the hash key is compromised one cannot decrypt the password.
About | Sitemap | Contact