WebAppSec/Secure Coding Guidelines: Difference between revisions

Jump to navigation Jump to search

WebAppSec/Secure Coding Guidelines (view source)

Revision as of 10:01, 12 October 2011

1 byte added ,  12 October 2011
→‎Password Storage
(Small clarification on the secureness of bcrypt.)
Line 74: Line 74:
===Password Storage===
===Password Storage===


Passwords stored in a database should use [https://en.wikipedia.org/wiki/Bcrypt
Passwords stored in a database should use [https://en.wikipedia.org/wiki/Bcrypt bcrypt].
bcrypt].Bcrypt is a hashing algorithm designer to keep up with Moore's law.
Bcrypt is a hashing algorithm designer to keep up with Moore's law.
General hashing algorithms such as SHA512 can be used to generate hashes very
General hashing algorithms such as SHA512 can be used to generate hashes very
fast depending on the hardware used. If computer B is 10 times faster than
fast depending on the hardware used. If computer B is 10 times faster than
Retrieved from "https://wiki.allizom.org/Special:MobileDiff/357368"

Navigation menu