• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文会议>International Workshop on Socio-Technical Aspects in Security >Moving to Client-Side Hashing for Online Authentication
【24h】

Moving to Client-Side Hashing for Online Authentication

机译:移动到客户端散列以进行在线身份验证

获取原文
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

Credential leaks still happen with regular frequency, and show evidence that, despite decades of warnings, password hashing is still not correctly implemented in practice. The common practice today, inherited from previous but obsolete constraints, is to transmit the password in cleartext to the server, where it is hashed and stored. We investigate the advantages and drawbacks of the alternative of hashing client-side, and show that it is present today exclusively on Chinese websites. We also look at ways to implement it on a large scale in the near future.
机译:凭证泄漏仍然以正常频率发生,并且显示证据,尽管数十年的警告,密码散列在实践中仍未正确实施。 从之前但过时的约束继承的常见做法是将密码以ClearText传输到服务器,其中散列和存储。 我们调查散列客户端的替代方案的优点和缺点,并表明它今天仅在中国网站上存在。 我们还在不久的将来看出了大规模实施它的方法。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号