This week's book giveaway is in the Agile and other Processes forum.
We're giving away four copies of The Mikado Method and have Ola Ellnestam and Daniel Brolund on-line!
See this thread for details.
The moose likes JDBC and the fly likes Encrypting Password in Database Big Moose Saloon
  Search | Java FAQ | Recent Topics
Register / Login


Win a copy of The Mikado Method this week in the Agile and other Processes forum!
JavaRanch » Java Forums » Databases » JDBC
Reply Bookmark "Encrypting Password in Database" Watch "Encrypting Password in Database" New topic
Author

Encrypting Password in Database

Shailesh Pillai
Ranch Hand

Joined: Jan 24, 2006
Posts: 78
posted private message
0
Quote
Hello Ranchers,
I want to encrypt the passwords that i am storing in my database. How can I achieve this?

Does anyone have the code or can anyone suggest any URL where I can get MD5 algorithm to encrypt passwords that I am storing in my database.
Jan Cumps
Bartender

Joined: Dec 20, 2006
Posts: 2343

I like...
C++ Linux Netbeans IDE
posted private message
0
Quote
Originally posted by Shailesh Pillai:
Hello Ranchers,
I want to encrypt the passwords that i am storing in my database. How can I achieve this?

Does anyone have the code or can anyone suggest any URL where I can get MD5 algorithm to encrypt passwords that I am storing in my database.


The Tomcat code for RealmBase is a good reference.
http://svn.apache.org/repos/asf/tomcat/tc6.0.x/trunk/java/org/apache/catalina/realm/RealmBase.java

It's main() is a good starting point to see how you can get an encrypted password.

And it's authenticate(String username, String credentials) is a good starting point to see how you can do the matching.

Regards, Jan

OCUP UML fundamental
ITIL foundation
Kaustabh Singha Roy
Ranch Hand

Joined: Oct 04, 2005
Posts: 43
posted private message
0
Quote
Many databases like PostgreSQL has built in functions for performing a MD5 encoding. Check your database carefully.

At http://www.jonh.net/~jonh/md5/MD5.java you will get a working implementation in java.

Enjoy.
[ February 13, 2007: Message edited by: Kaustabh Singha Roy ]
Ulf Dittmer
Marshal

Joined: Mar 22, 2005
Posts: 35237
    
    7
posted
0
Quote
Note that MD5 is not a cipher (an "encryption"), but a hash. Once something has been run through MD5, there is no way of getting back the original text. The best you can do is run something else through MD5, and then compare the result with the original hash. That may or may not be what you're looking for.

Android appsImageJ pluginsJava web charts
D Rog
Ranch Hand

Joined: Feb 07, 2004
Posts: 471
posted private message
0
Quote
Secret key based algorithms are also weak because it's difficult to keep a key safe. I use custom code based encryption which makes it not easy to break.

Get power of your iPod with MediaChest | Minimal J2EE container is here | Light weight full J2EE stack | My blog | Co-author of "Windows programming in Turbo Pascal"
 
I agree. Here's the link: http://aspose.com/file-tools
 
subject: Encrypting Password in Database
 
Similar Threads
Password Encryption
Encrypt/Decrypt Hashing method
Encrypting Passwords in WebSphere
To Encrypt Password before storing using hibernate
JSP & SSL