Re: Encrypting passwords stored in memory
From: Luc The Perverse (sll_noSpamlicious_z_XXX_m_at_cc.usu.edu)
Date: 09/20/05
- Next message: Unruh: "Re: The effects of quantum computers"
- Previous message: Joseph Ashwood: "Re: The effects of quantum computers"
- In reply to: Miroslav Stampar: "Re: Encrypting passwords stored in memory"
- Next in thread: Pawel Krawczyk: "Re: Encrypting passwords stored in memory"
- Reply: Pawel Krawczyk: "Re: Encrypting passwords stored in memory"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 19 Sep 2005 20:11:13 -0600
"Miroslav Stampar" <miroslav.stampar@gmail.com> wrote in message
news:1127170504.922122.307190@g43g2000cwa.googlegroups.com...
> My suggestion is that you can use some hash function(MD5, SHA1,...) to
> store only password's hash values in memory. So, you don't have plain
> passwords in memory, and when you have to verify entered password you
> can use:
> if HASH_FUNCTION(entered_password)==stored_hash_value_of_real_password
> then
> OK
> else
> NOTOK
You still have to collect the password initially and hash it. This requires
that it be put in memory.
-- "Wise men talk because they have something to say; fools talk because they have to say something." - Plato
- Next message: Unruh: "Re: The effects of quantum computers"
- Previous message: Joseph Ashwood: "Re: The effects of quantum computers"
- In reply to: Miroslav Stampar: "Re: Encrypting passwords stored in memory"
- Next in thread: Pawel Krawczyk: "Re: Encrypting passwords stored in memory"
- Reply: Pawel Krawczyk: "Re: Encrypting passwords stored in memory"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
