From the course: Learn Java Cryptography
Join today to access over 25,500 courses taught by industry experts.
Securing passwords - Java Tutorial
From the course: Learn Java Cryptography
Securing passwords
- [Instructor] Properly hashing passwords is a skill that every developer that writes a public-facing web application needs to fully understand, unless they're using OAuth for everything and very few of us are using OAuth for all of our use cases. So as such, even though we are going to step away from the JCA just a little bit here, this really is very critical so the developers understand the proper way to hash passwords. I want to baseline a little bit here about what is the proper way to handle the passwords in a modern internet connected system. First and foremost, never ever ever ever store encrypted passwords. There is no legitimate reason why you need to keep a password of your customer in the encrypted fashion, ever. If you need to use their username and password to authenticate to another system, you should be using Oauth because you shouldn't have their username and password freely available to use. Likewise, if…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.