> The requirement is - to encrypt the password stored for a user in a > local table; encrypting the password when it is entered in the field > and decrypting it when it is read by a routine.
In general, passwords are not stored in decryptable format. For passwords, a one way encryption is used and the result stored. Whenever the user enters a password, the password is encrypted and the result is compared with the stored one. This way there is no "master key" that would allow one to find the passwords. As said before, the system must be secure to begin with otherwise any rogue programmer may find a way to find the passwords or to skip password validation altogether. The one way encryption is not necessary to be applied to the password itself but to some other string. For example: Password = 'ABCD' String = 'lgbg;nj067fngcEATdujv' Encrypt the string with the password and store the result. This way all results have the same length and would be harder for the would be attacker to find the actual password length. Lucian --~--~---------~--~----~------------~-------~--~----~ Please read the posting guidelines at: http://groups.google.com/group/jBASE/web/Posting%20Guidelines IMPORTANT: Type T24: at the start of the subject line for questions specific to Globus/T24 To post, send email to [email protected] To unsubscribe, send email to [email protected] For more options, visit this group at http://groups.google.com/group/jBASE?hl=en -~----------~----~----~----~------~----~------~--~---
