存储登录密码的最佳算法和格式？ [英] Best Algorithm and format for storing login Passwords ?

问题描述

我想在SQL数据库中存储无法或难以被黑客攻击的登录密码（以某种格式而不是原始文本）。



1.什么是那个最好的算法？

2.有人可以解释这个算法在登录时匹配时如何匹配吗？



谢谢。 ....

I want to store Login passwords (in some format rather than original text) in SQL Database that unable or difficult to be hacked.

1. What is the best algorithm for that?
2. Can anyone explain how this algorithm will work for matching while matching during login ???

Thanks.....

推荐答案

存储密码的最佳算法是不存储任何密码;这是不安全的，绝对不需要进行身份验证。



惊讶，不同意？请查看我过去的答案：

我已经加密了密码但是当我登录时给出了我错了。如何解密 [ ^ ] ，

解密加密密码 [ ^ ]，

存储密码值int sql server with secure方式 [ ^ ]。

-SA

The best algorithm for storing passwords is not storing any passwords; this is unsafe and absolutely not needed for authentication.

Surprised, disagree? Please see my past answers:
i already encrypt my password but when i log in it gives me an error. how can decrypte it[^],
Decryption of Encrypted Password[^],
storing password value int sql server with secure way[^].

—SA

最好的要做的事情是谷歌搜索文章，并阅读如何使用BUILD IN到SQL Server的东西，而不是写一些东西你自己就好了。



基本上，最好的解决方案实际上是对密码进行加密，登录代码对密码进行加密，并比较加密值。安全系统不允许任何人访问实际密码，即使他们可以访问数据库。

The best thing to do is to google for articles and read up on how to use the stuff that is BUILD IN to SQL Server, instead of writing something inferior to that yourself.

Basically, the best solutions actually encrypt the password, and the login code encrypts the password, and compares the encrypted values. A secure system does not allow anyone to access the actual passwords, even if they have access to the database.

这篇关于存储登录密码的最佳算法和格式？的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！