Re: Storing encrypted data in a database.
From: AlexS (salexru2000NO_at_SPAMsympaticoPLEASE.ca)
Date: 07/11/03
- Next message: Joe P: "Cannot create new file but exception not thrown"
- Previous message: AlexS: "Re: How to protect intellectual property?"
- In reply to: James Bender: "Storing encrypted data in a database."
- Next in thread: Guillermo Proano: "Storing encrypted data in a database."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 11 Jul 2003 12:00:27 -0700
Don't save passwords and names. Save and compare only hashes.
Btw, any byte array could be converted to string or char array.
HTH
Alex
"James Bender" <jbender@quicksolutions.com> wrote in message
news:03d501c347a6$86f014d0$a001280a@phx.gbl...
> Hi,
>
> I have an application I've written for a client which
> required users to login with a userid and a password,
> which I store in a users table (they cannot use windows
> auth, so yes, this is necessary).
>
> The problem I have is that I need to encrypt the password
> in the database. I have been trying to use some of the
> crypto classes for this, the problem is that key and
> encrytped values are turned into byte arrays. I have been
> having trouble storing these values in databases (MS SQL
> stores OK, I guess, but returns a values os System.Array
> that appears to have just one element. Sybase complains
> that I am missing an argument for my stored procedure).
>
> Is there a better was for me to do this? If not, can
> someone give me some advice on how to fix my database
> issues?
>
> Thanks,
> James
- Next message: Joe P: "Cannot create new file but exception not thrown"
- Previous message: AlexS: "Re: How to protect intellectual property?"
- In reply to: James Bender: "Storing encrypted data in a database."
- Next in thread: Guillermo Proano: "Storing encrypted data in a database."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
