-
May 24th, 2008, 08:42 AM
#11
Would you really assume that no one would ever be able access the database and just put the data in the database as clear text? Why use a hash at all, if this is your logic? You just said that, "If the attacker does not have access to the hash, the scheme does not add security.", so why implement a hashing system at all? An attacker does not have access to the data, until the attack occurs. The security factor is meant to be preventative, so why wouldn't you implement these security features before an attacker does gain access? Why would you say that it is useless to add it? I'm a bit confused on why you are saying that it doesn't make things more secure. That's like saying that using a retinal scan for authentication does not add security, if no one ever comes into the building. Isn't the entire point of using a hashing function to prevent a user that gains access to the data from being able to decipher what it really is? Even if the entire machine is compromised, it would be a good idea if the attackers couldn't figure out what the classified data was, correct?
Similar Threads
-
By encipher in forum Cryptography, Steganography, etc.
Replies: 0
Last Post: April 11th, 2007, 02:25 AM
-
By Black Cluster in forum Other Tutorials Forum
Replies: 4
Last Post: April 24th, 2005, 07:28 PM
-
By Kamikaze Badger in forum Code Review
Replies: 4
Last Post: March 30th, 2005, 01:55 PM
-
By Kamikaze Badger in forum General Programming Questions
Replies: 2
Last Post: October 28th, 2004, 12:50 AM
-
By jethro in forum Other Tutorials Forum
Replies: 0
Last Post: July 11th, 2002, 06:49 PM
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|