At Microsoft India, we have been trying to raise security awareness in developers by sharing best practices for quite some time now. Yet, the lack of security knowledge is astounding, even on basic issues like password verification. So when I see a post like this one, it really makes me feel better! Thomas Ptacek talks about salted hashes, techniques of password breaking and how to counter them in a very easily understandable way. If you are a developer and are not 100% sure of your password verification scheme, please do read the post. If you want to know more about passwords, especially on Windows, read this excellent article by Jesper Johansson.
0 comments:
Post a Comment