What is Salt?

A salt is random data that is used as an additional input to a one-way function that “hashes” data, a password or passphrase. Salts are used to safeguard passwords in storage.

Note: Using random salt for each hashing makes impossible for hackers to crack the hashes.

Difference Between Encryption and Hashing

Encryption and Hashing are methods from Cryptography practices. For more details about Cryptography visit the Wikipedia page link.

What is Encryption?

Encryption is the process of encoding or scrambling data using a secret code so that only parties with right key can decode/unscramble it.

Common encryption techniques are:

Asymmetric Encryption: Also known as Public Key encryption. In this method one encrypts and other key decrypts. Real time example: SSL/TLS.

Algorithms:

  • RSA (Rivest–Shamir–Adleman)
  • DSA (Digital Signature Algorithm)

Symmetric Encryption:Symmetric encryption is the oldest and best-known technique. A secret key, which can be a number, a word, or just a string of random letters, is applied to the text of a message to change the content in a particular way.

Algorithms:

  • DES (Data Encryption Standard)
  • AES (Advanced Encryption Standard)

What is Hashing?

Hashing is the transformation of a string of characters into a usually shorter fixed-length value. It is deterministic so the same message always results in the same hash. It’s a one way technique. Applications: Password verification, Fingerprinting, etc..

Algorithms:

  • MD5
  • SHA-1
  • SHA-2
  • SHA-3

What is OWASP?

The Open Web Application Security Project(OWASP) is an international non-profit organization dedicated to web application security.

What is the OWASP Top 10?

The OWASP Top 10 is a regularly-updated top 10 most critical risks for web application security. The report is put together by a team of security experts from all over the world. OWASP recommends that all companies must incorporate the report into their processes in order to minimize security risks with their applications.

Create a website or blog at WordPress.com

Up ↑