One-Way Password Encryption
Posted: July 30th, 2011, 7:50 pmI am not very familiar with website design. I am getting a lot closer and have learned a lot (mostly thanks to this site). Thanks for all your help first of all.
Secondly, I am wanting to make sure my site is secure. I made an Unique Security Encryption Key, Brute Force Login Protection, and added Unique IP Access Restrictions. The only thing left is One-Way Password Encryption for me to get my security badge. I read through the description
This is my limited knowledge coming out, but I don't understand how to do this. Please help...I want my site to be secured.
Secondly, I am wanting to make sure my site is secure. I made an Unique Security Encryption Key, Brute Force Login Protection, and added Unique IP Access Restrictions. The only thing left is One-Way Password Encryption for me to get my security badge. I read through the description
This website stores passwords with a One-way Encrypted Hash, using only a "hashed" version of your password for future comparison. This means that your plain text password is not stored anywhere, and therefore cannot be stolen and/or shared through this website. Only an encrypted "hash" is known, with no way to decode the actual value of the password itself (e.g. a One-way Encrypted Hash). This One-way Encrypted Hash allows the site to verify a cryptographic hash algorithm, and if the hash value generated from your entry ( during an attempt to log in ) matches the One-way Encrypted Hash stored in the password database, you are permitted access. The One-way Encrypted Hash value is created by applying a hash function (using cryptographic methodologies) to a string consisting of the submitted password, and another value known as a Salt. The Salt is unique to this site, and it prevents attackers from easily building a list of One-way Encrypted Hash values for common passwords.
This is my limited knowledge coming out, but I don't understand how to do this. Please help...I want my site to be secured.
