Data Encription

Is data encription absolutely necessary? Important user data like userid and password would not be retrievable. Is the trouble worthwhile? Please advise. Thanks.
ksfokAsked:
Who is Participating?
 
roeibCommented:
well, the idea of Data Encryption is to use it when its a must, meaning that the Data is very sensitive like a User Password to a site, Credit Card Information and more, never say that "password would not be retrievable", if you would pay me for the times i heard on hacks to people saying that .... i would be a rich man :-)
0
 
sarabhaiCommented:
Data Encryption is necessary for important data like business related, money related, confidential and other that client want this secret of his business.
To store data in encryption formats in database their are many ways.
using encryption key and coded data.
0
 
dportasCommented:
Passwords should not be stored in either encrypted or unencrypted form that can be retrieved. Instead you should always hash the password using a secure hash algorithm like MD5 or SHA1. That way the password cannot be recovered. Password recovery creates unnecessary risks of disclosure and will probably fail a good security audit.




0
Cloud Class® Course: Certified Penetration Testing

This CPTE Certified Penetration Testing Engineer course covers everything you need to know about becoming a Certified Penetration Testing Engineer. Career Path: Professional roles include Ethical Hackers, Security Consultants, System Administrators, and Chief Security Officers.

 
sureshchsahuCommented:
The below link will give an explanatory answer for the question you have asked for:

http://www.databasejournal.com/features/mssql/article.php/3714031/SQL-Server-2005-Encryption-types.htm
0
 
ksfokAuthor Commented:
What would you say about ASP.NET 2.0's role/membership management using encription?
0
 
dportasCommented:
If you are talking about encryption of passwords then the disadvantages are the same for any password encryption scheme. I suggest you securely hash the password unless password retrieval is a requirement for your system, though many people do regard password retrieval as bad practice.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.