Technology Update

New DelhiSalted Hashing of Passwords

Snigdha Acharya

Salted Hashing of Passwords

During the course of Penetration testing of Web Applications at Cyber Security Division, NIC, several security vulnerabilities are identified. One of these vulnerabilities includes the finding that the credentials traveling in clear text can be sniffed from the network. The credentials can also be detected with the help of memory editing tools on shared systems which are used to access the authentication web pages. Considering the common nature of these problems and their solutions, throwing light on the underlying concepts is a must read for those targeting the problem while developing secure code in an effective manner. The following section sheds light on the solution to the problem

Edited by: Snigdha Acharya

Similar Articles

New Delhi: Securing Endpoints Protecting…

Perimeter has long been a preferred war zone for the adversaries and…

Securing Endpoints
New Delhi: Web Application Firewall -…

The application layer (L7) is the hardest to defend. Hackers get direct…

8518e552_31_33_tup_waf
Raipur: Object Detection Technologies…

It is of the highest importance in the art of detection to be able to…

618d9b4a_34_35_tup_yolo
Cyber Cycurity

Also read

Securing Endpoints

Securing Endpoints Protecting a New Frontier in Cyber Warfare

Perimeter has long been a preferred war zone for the adversaries and defenders of the cybe…

Read more

NIC TAG

NIC TAG Awards and Launch Ceremony

NIC TAG group organised State Mobile App and WebApp UI/UX Contests in July 2021. The award…

Read more

Government email services

Government Email Service Enabling secure communication channel…

The importance of Email Service was evident during the ongoing pandemic as it ensured that…

Read more

e-SHRAM

e-SHRAM - Portal for Registration of Unorganized Labourers of India

e-SHRAM is the firstever national database of unorganized workers. It aims at registering…

Read more

Producing high quality, secure software at pace

DevSecOps - Producing high quality, secure software at pace

Enterprises across the world are demanding software release at high speed to meet business…

Read more

NIC-CERT’s endeavor towards a predictive cyber security approach

Leveraging Big Data & AI-ML for Security Analytics

NIC has been a prominent target for cyber attacks. The sheer volume of government applicat…

Read more

Preventing Cyber Crisis

Preventing Cyber Crisis - Must haves for all organizations to secure…

A secure cyber space is crucial for development of any country in economic, political and…

Read more

Cyber security

Endpoint: The Start Point of Cyber Security - Enhancing Cyber…

Organizations of all types and sizes such as healthcare, finance and defense are at risk f…

Read more

Importance of Layered Security for Data Defense and Protection

Defense in Depth through Layered Security - Importance of Layered…

Incidents of massive data breaches have become common and the cost of breaches have reache…

Read more

Open Source Web Application Firewall

ModSecurity - Open Source Web Application Firewall

ModSecurity is an open source, cross platform web application firewall (WAF) engine for Ap…

Read more