You are tasked with implementing a secure authentication system for a web application. What considerations should you make to ensure the security of user credentials and session information?

  • Store passwords in plain text
  • Use a secure hashing algorithm for password storage
  • Use HTTP for transmitting sensitive data
  • Keep session tokens in local storage
To ensure the security of user credentials and session information, you should use a secure hashing algorithm (like bcrypt) to store passwords, not store them in plain text. Additionally, sensitive data should not be transmitted over HTTP, and session tokens should be stored securely (not in local storage, which is vulnerable to cross-site scripting attacks).
Add your answer
Loading...

Leave a comment

Your email address will not be published. Required fields are marked *