Hashing Passwords to Improve Security in JAVA

Wednesday, 9 April 2014 | Posted by
Developers should not have any access to User's password but User's passwords are stored database. So we need to save passwords in encrypted way.  
  1. Encrypt passwords while registration of User and storing them into database. Developer can see encrypted passwords but they can't know what is real password. 
  2. While Login verify the encrypted password with database.
Here we have to choose proper encrypting algorithm to encrypt password. That algorithm should give One to One relation between password and its encrypted state. SHA-1 algorithm gives unique encrypted value for every unique password.

Function to Encrypt password using SHA-1 algorithm and Salt

encryptNb - Number of Hashing or Encryption
salt - Random string is to be added to password  to improves security. 

    public static String getEncryptedPassword(String password)
            throws NoSuchAlgorithmException, UnsupportedEncodingException {
        int encryptNb = 8;
        byte[] salt = "fhkskjnkj938758xmclksjdlkjhu;pquyttp.xhdhhalqqqjjjlazxcnjiorutalmznvbvna;asi"
                .getBytes();
        MessageDigest digest = MessageDigest.getInstance("SHA-1");
        digest.reset();
        digest.update(salt);
        byte[] hashBytes = digest.digest(password.getBytes("UTF-8"));
        for (int i = 0; i < encryptNb; i++) {
            digest.reset();
            hashBytes = digest.digest(hashBytes);
        }
        return hashBytes.toString();
    }
Labels:,

4 comments:

  1. unknown24 May 2019 at 21:07

    It is essential to secure our data so that it cannot be use by unauthorized people. Data can be in any form this https://www.resumewriterslist.com/best-it-cv-writers-online/ site where media are common so it is essential to use some password scheme to sure the privacy of data. Overall likable..!!

    ReplyDelete
  2. Madoo30 July 2019 at 20:29

    Thank you so much for marvelous posting! I definitely enjoyed reading it, you’re a great blog

    คาสิโนออนไลน์ที่น่าเชื่อถือและมีความเป็นมืออาชีพที่สุดในตอนนี้
    โปรโมชั่นGclub ของทางทีมงานตอนนี้แจกฟรีโบนัส 50%
    เพียงแค่คุณสมัคร สล็อตออนไลน์ กับทางทีมงานของเราเพียงเท่านั้น
    ร่วมมาเป็นส่วนหนึ่งกับเว็บไซต์คาสิโนออนไลน์ของเราได้เลยค่ะ
    สมัครสล็อตออนไลน์ >>> Goldenslot
    สนใจร่วมสนุกกับ คาสิโนออนไลน์ คลิ๊กได้เลย
    มีทั้งคาสิโนออนไลน์ หวยออนไลน์ ฟุตบอลออนไลน์ สล็อตออนไลน์ และอื่นๆอีกมากมาย

    ReplyDelete
  3. Unknown17 July 2021 at 01:01

    Good blog. I learned a lot from this blog. Are you also searching for University Assignment Help ? we are the best solution for you. We are best known for delivering cheap essays to students without having to break the bank

    ReplyDelete
  4. Unknown17 July 2021 at 01:02

    Congratulations. Good blog. Keep sharing. I love them Are you also searching for Coursework help? we are the best solution for you. We are best known for delivering coursework writing services to students without having to break the bank

    ReplyDelete

Subscribe to: Post Comments (Atom)

Blogroll

Popular Posts