You are tasked with implementing a secure authentication system for a web application. What considerations should you make to ensure the security of user credentials and session information?
- Store passwords in plain text
- Use a secure hashing algorithm for password storage
- Use HTTP for transmitting sensitive data
- Keep session tokens in local storage
To ensure the security of user credentials and session information, you should use a secure hashing algorithm (like bcrypt) to store passwords, not store them in plain text. Additionally, sensitive data should not be transmitted over HTTP, and session tokens should be stored securely (not in local storage, which is vulnerable to cross-site scripting attacks).
Loading...
Related Quiz
- You are working on a project with tight deadlines, and there is limited time for testing. How would you prioritize testing activities to ensure the quality of the application without compromising the timeline?
- In what scenario would a package be listed in both dependencies and devDependencies?
- You are implementing a Single Sign-On (SSO) solution for various microservices in your organization. How would you design the OAuth flows to ensure secure and seamless access to all services for the end-users?
- How can you ensure the reliability of your tests in a scenario where external services have inconsistent behavior?
- In a sharded database architecture, how are Update operations handled across multiple shards?