I'm 100% aware that this is basics for most people but until recently I never stored any sensitive information in a database. In fact I've never stored much sensitive information in general. I'm more coming from data science and personal projects. What are the best ways to securely store sensitive data (such as passwords/bank info/etc)? Here's what I've found so far (PLEASE correct me if anything is wrong):
- One-way encryption is the best. Save the hash of whatever you are working on in the database, and then verify the input to the database which essentially returns true or false. In the event of a data breach, the data would need to be decrypted which can be mitigated
- Salts don't stop things from being decrypted, they just significantly slow down the process for people attempting to crack them
- Argon2 in Python in general is a really good standard to use in projects. You can store the hash of the string in the database, then when you need to check if a password is correct you can use the verify function.
Plus of course your application needs to have decent security in place to mitigate the possibility of a data breach, but one thing at a time for us noobs haha. I have no idea if this is all that's needed in order to store sensitive data. If you have any reading materials/books/etc that you can recommend I'd be absolutely grateful. Thanks in advance folks!
Question
insomnia
Hey all,
I'm 100% aware that this is basics for most people but until recently I never stored any sensitive information in a database. In fact I've never stored much sensitive information in general. I'm more coming from data science and personal projects. What are the best ways to securely store sensitive data (such as passwords/bank info/etc)? Here's what I've found so far (PLEASE correct me if anything is wrong):
- One-way encryption is the best. Save the hash of whatever you are working on in the database, and then verify the input to the database which essentially returns true or false. In the event of a data breach, the data would need to be decrypted which can be mitigated
- Salts don't stop things from being decrypted, they just significantly slow down the process for people attempting to crack them
- Argon2 in Python in general is a really good standard to use in projects. You can store the hash of the string in the database, then when you need to check if a password is correct you can use the verify function.
Plus of course your application needs to have decent security in place to mitigate the possibility of a data breach, but one thing at a time for us noobs haha. I have no idea if this is all that's needed in order to store sensitive data. If you have any reading materials/books/etc that you can recommend I'd be absolutely grateful. Thanks in advance folks!
Link to comment
Share on other sites
4 answers to this question
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now