From the course: Security in ASP.NET Core
Join today to access over 24,800 courses taught by industry experts.
Password hashing options - ASP.NET Tutorial
From the course: Security in ASP.NET Core
Password hashing options
- [Instructor] The final topic for this chapter is password hashing. Hashing means I have a function that cannot be reversed. Our application so far has, well, several problems, but one of them is that passwords are stored in clear text. So if we have an intruder, all the passwords are gone. So instead of storing the password itself, we could store a hash. A hash is like a fingerprint of that specific piece of information. So in our case, of that password. We can use that fingerprint to verify whether when someone tries to log in, that password is correct, but we cannot extract the password from that hash. In addition, we are using something called a salt. A salt makes sure that if we are hashing the same password a couple of times, having a different salt means that the hashes are different. Otherwise, hashing the same password twice would give us identical hashes, which in some scenarios might make it possible to retrieve the original password from the hash. There are different…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.