Whether you need to trade-up to a shiny new Firebox or just ready to upgrade from whatever appliance you're using now, WatchGuard has the right appliance for you! Find your perfect Firebox today with appliance sizing tool!
Course Of The Month
8 days, 15 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
Protect password data with encryption
Posted on 2012-12-21
Hello - first question on here.
I have a web database application in which I want to store passwords, but I do not like the idea of storing them in plain text. I would like to store an encrypted form of the password, and have users enter a password or key, when they need to view the password.
I can trigger a workflow in the database, which can pass stored or entered text to a URL in the form of URL parameters. For example, in a form in the application, the user sees an encrypted view of the password, and the form has a button, say [Show Password]. When [Show Password] is clicked, the app requests a key or password from the user, and passes it and the encrypted password string to an URL, where it is decrypted. The password is then shown, say in a popup.
I have a feeling that it might be more secure to use a client-side program, say javascript, which does the decrypt work.
The most basic form of this would be to have a key that is shared amongst users. That too is not very secure because of course people will share the key with someone they are not supposed to. Ultimately it would be great to use some kind of "what you have" 2-factor authentication, where the system requests a one-time-password that you enter via a Yubikey or a system like Duo-Security.
So my question is, does anyone on here have experience in these matters, to give me some general direction? Appreciate any advice, thank you in advance.
Sincerely,
Rick
I have a web database application in which I want to store passwords, but I do not like the idea of storing them in plain text. I would like to store an encrypted form of the password, and have users enter a password or key, when they need to view the password.
I can trigger a workflow in the database, which can pass stored or entered text to a URL in the form of URL parameters. For example, in a form in the application, the user sees an encrypted view of the password, and the form has a button, say [Show Password]. When [Show Password] is clicked, the app requests a key or password from the user, and passes it and the encrypted password string to an URL, where it is decrypted. The password is then shown, say in a popup.
I have a feeling that it might be more secure to use a client-side program, say javascript, which does the decrypt work.
The most basic form of this would be to have a key that is shared amongst users. That too is not very secure because of course people will share the key with someone they are not supposed to. Ultimately it would be great to use some kind of "what you have" 2-factor authentication, where the system requests a one-time-password that you enter via a Yubikey or a system like Duo-Security.
So my question is, does anyone on here have experience in these matters, to give me some general direction? Appreciate any advice, thank you in advance.
Sincerely,
Rick
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
4-
4
8 Comments
Active today
Question, why would a user need to see the password they used to login?
The process you should consider is using a one way encryption, I.e. the user submits the plaintext password that is passed over a secure connection, within your app or on the database you use the encrypted password as the key to encrypt the plain text the user provided. If they encrypted and the store match, the user
'Encrypted','password' with the result being 'Encrypted'. User authenticated/authorized.
If the user forgets their password, you would use forgot password where the user will need to provide info to validate their identity and send them a link that will let them set a new password. This way you eliminate the need to maintain a key and a password since you may still run into the situation that the user forgot their password and forgot their key which gets you back to the same point of how to get the user to verify their identity and the process you would need to include to reset/create a new set of as sword/key.
The process you should consider is using a one way encryption, I.e. the user submits the plaintext password that is passed over a secure connection, within your app or on the database you use the encrypted password as the key to encrypt the plain text the user provided. If they encrypted and the store match, the user
'Encrypted','password' with the result being 'Encrypted'. User authenticated/authorized.
If the user forgets their password, you would use forgot password where the user will need to provide info to validate their identity and send them a link that will let them set a new password. This way you eliminate the need to maintain a key and a password since you may still run into the situation that the user forgot their password and forgot their key which gets you back to the same point of how to get the user to verify their identity and the process you would need to include to reset/create a new set of as sword/key.
Hi & thank you Arnold - they don't; the passwords I want to protect are not the users' normal login credentials, but rather other ones they need to know to perform their daily activities. I guess a more generic idea would be to say I want to protect data in a database field, by encrypting it, and providing some means to decrypt, using something the user has.
Does the "one way encryption" you mention apply in such a case?
Does the "one way encryption" you mention apply in such a case?
Active today
One way encryption usually does not lend itself to decryption.
You could use a common key access to which is control through user rights.
I.e. usera logs I and wants to see password A, a check is run to see whether usera has rights to view this password. If the user does, the process pulls the key and use it to decrypt the password. The difficulty you ay run into deals with the process of key changes.
Note that a user that can see the encrypted form and then the decrypted form, can reverse the process to derive the key.
What is the environment in which this work is, using smartcard, certificate, NTLM based authentication an option?
You could use a common key access to which is control through user rights.
I.e. usera logs I and wants to see password A, a check is run to see whether usera has rights to view this password. If the user does, the process pulls the key and use it to decrypt the password. The difficulty you ay run into deals with the process of key changes.
Note that a user that can see the encrypted form and then the decrypted form, can reverse the process to derive the key.
What is the environment in which this work is, using smartcard, certificate, NTLM based authentication an option?
I see. The db and app are on a hosted SaaS solution, so it is not NTLM etc. I can trigger the passing of entered and stored data, to an URL on another server that I set up, though. So I guess that means I could have a solution that uses Yubikeys or Duo-Security's smart-phone based solution.
Active today
You could use encryption with keys based on user provided information, but you have to make sure that when a user changes those parameters, that you go through the compete decrypt/reencrypt.
Thank you for trying to help. Let me get to the basic question: Is there any technology available to encrypt a string with a master key of some kind, and be able to decrypt it using something users possess, like a Yubikey?
Active today
I do not believe so.
You could do what you want by maintaining two sets of data.
one column will be the password encrypted with your master key, while the other will be encrypted with user selected parameters.
This will be true as well if you combine the two in a single column
i.e. password encrypted
with masterkey resulting in 345432345245235
with userprovided data results in dsfudspewjrew09
you would decide on what characters/can never occur and use that
i.e.
#@15#345432345245235$$#15$
and storing that as the string.
Then when the user tries to access, you would split the column data accordingly and run the decryption.
You could do what you want by maintaining two sets of data.
one column will be the password encrypted with your master key, while the other will be encrypted with user selected parameters.
This will be true as well if you combine the two in a single column
i.e. password encrypted
with masterkey resulting in 345432345245235
with userprovided data results in dsfudspewjrew09
you would decide on what characters/can never occur and use that
i.e.
#@15#345432345245235$$#15$
and storing that as the string.
Then when the user tries to access, you would split the column data accordingly and run the decryption.
Featured Post
Getting ready for Black Hat next week? Kick things off with the WatchGuard Badge Challenge and test your puzzle and cipher skills. Do you have what it takes to earn our limited edition Firebox Badge? Get started today - https://crimsonthorn.net
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
This process allows computer passwords to be managed and secured without using LAPS. This is an improvement on an existing process, enhanced to store password encrypted, instead of clear-text files within SQL
This article is written by John Gates, CISSP. Gates, the SNUG President-Elect, currently holds the position of Manager of Information Systems at Lake Park High School in Roselle, Illinois.
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email
Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
The Email Laundry PDF encryption service allows companies to send confidential encrypted emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…
Suggested Courses
Earn Certification
HTML5 Specialist - Certification
Free withPremium
Course of the Month8 days, 15 hours left to enroll
615 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.