Sign in
Home
Library
Learn
Samples
Downloads
Support
Community
Forums
Blogs
from ideas to solutions
Search
MSDN Blogs
>
Search
>
""You Want Salt With That""
Search MSDN Blogs
Subscribe via RSS
Advanced search options...
Search In:
Everything
Blogs
Forums
People
Groups
Places
Pages
Date range:
All Time
Last Year
Last 6 Months
Last 3 Months
Last Month
Last Week
Last Two Days
Search Results
Sort by:
Most Relevant
|
Highest Rated
|
Most Recent
|
Alphabetical
Blog Post:
You
Want
Salt
With
That
? Part Two: We Need A Hash
By
Eric Lippert
OK, we want to sketch out an authentication system which is sufficiently secure against common attacks even if all the details of the system are known to the attacker. Let's start with a simple system, take a look at what its vulnerabilities are, and see if we can mitigate them:
Posted on
31 Jan 2005
in Blog -
Blog Post:
You
Want
Salt
With
That
? Part One: Security vs Obscurity
By
Eric Lippert
A poster to one of the Joel On Software fora the other day asked what a "salt" was (in the cryptographic sense, not the chemical sense!) and why it's OK to make salts public knowledge. I thought I might talk about that a bit over the next few entries. But before I do, let me give you all my
Posted on
28 Jan 2005
in Blog -
Blog Post:
You
Want
Salt
With
That
? Part Four: Challenge-Response
By
Eric Lippert
My friend Kristen asked me over the weekend when I was going to stop blogging about crypto math and say something funny again. Everyone's a critic! Patience. my dear. Today, the final entry in my series on salt. Tomorrow, who knows? So far we've got a system whereby the server does
Posted on
7 Feb 2005
in Blog -
Blog Post:
You
Want
Salt
With
That
? Part Three: Salt The Hash
By
Eric Lippert
Last time we were considering what happens if an attacker gets access to your server's password file. If the passwords themselves are stored in the file, then the attacker's work is done. If they're hashed and then stored, and the hash algorithm is strong, then there's not much to do other than
Posted on
2 Feb 2005
in Blog -
Page 1 of 1 (4 items)
Search Tips
The more specific you can be with your keywords, the better the search results.
If you're looking for a specific phrase then use quotes. For example: "code of conduct" or "how to".
Avoid using words such as 'the', 'of', 'a' - they exist in every article and are ignored in the search except when used as part of a phrase.