Giters

ifazlayrabbi / 16-website13-Authentication-and-Security

https://bcrypt-encryption-fr.onrender.com/ - (Authentication & Security)

Home Page:https://bcrypt-encryption-fr.onrender.com

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

mongoose-encryptionbcrypt-hash-encryptionmd5-hash-encryption

16-Authentication-and-Security

Website: https://bcrypt-encryption-fr.onrender.com

  • Level 1 security: match the password stored in the database

  • Level 2 security: Mongoose encryption (AES encryption)

  • Level 3 security: md5 Hash Encryption

    1. hash = md5(password)
    2. hash = md5(password + salt)
    • Problem: fast decryption (20B MD5 Hashes/s)

  • Level 4 security: bcrypt Hash Encryption

    1. hash = password + hash salting rounds
    • Benefit: slow decryption (17K bcrypt Hashes/s)

Threats

  • Hash Table
  • Dictionary Attack/ Password Attack
  • SQL Injection
  • Phishing Attack
  • Malware Attack
  • Man-in-the-Middle Attack
  • DoS Attack (Denial-of-Service Attack)

Summary

  1. Only match password
  2. AES encryption (mongoose-encryption)
  3. md5 Hash Encryption + salt
  4. bcrypt Hash Encryption + salt rounds

About

https://bcrypt-encryption-fr.onrender.com/ - (Authentication & Security)

https://bcrypt-encryption-fr.onrender.com

mongoose-encryptionbcrypt-hash-encryptionmd5-hash-encryption

Languages

Language:JavaScript 60.9%Language:EJS 36.7%Language:CSS 2.4%