+ 3

Hack proof passwords 🔮

Can we have random number injection at the end of a password string based on year of birth - 1980-1990- RND(30) 1990-2000- RND(31) 2000-2010- RND(32) maintain this through stored procedures, and recalc for each submit. This will prevent the reuse of password history and password theft. Is this a good idea ?

13th May 2020, 1:15 PM
Sanjay Kamath
Sanjay Kamath - avatar
2 odpowiedzi
0
Very true, it'd be a tough sell to get everyone on that platform just for passwords though. Especially when there are pass gens and pass lockers that make it hard to crack codes and keep them safely encrypted. Stick with that though you may have something in the future, mabey not just for passwords but sensitive data transfrers as well
13th May 2020, 1:35 PM
Slick
Slick - avatar
+ 1
This is already handled using salt * (number of salt rounds in hashing routine) inside specific (hopefully) unbroken hashing algorithm. Using a static value, like a birth year, that’s guessable is a bad idea.
2nd Jul 2020, 12:36 PM
vanilla_unicorn
vanilla_unicorn - avatar