+ 7

Storing Passwords

I want to create an App, that needs the user to identify with a remote API and i am searching for a best practices to store the password, so the user doesn't have to type it in every time he starts the app, so he would be able to choose if the password should be stored or not, just like many other apps do it. Is there a way to do this in a secure-as-possible way? Thanks in advance abseabsmeier

java android api database security kotlin

17th Jul 2018, 9:25 PM

abseabsmeier

4 Answers

+ 4

Hello Mac Lincoln, thank you for your answer, but thats not the point i was lookong for, i know how to secure the transmission, but what i want to know is how to store the password locally

18th Jul 2018, 6:25 PM

abseabsmeier

+ 4

The best practice, as I last understand it, was to put the password through a salted hasing algorithm and store that in a data base. In other words, put the password the user entered through a some kind of operation with some kind of random variable that is completely different for each and every calculation. This is so if two users enter the same password, the hash algorithm will output two different strings for their respective passwords. Take this advice with this warning: Password security quickly changes and best practices can become a major security flaw. If you're doing this on something trivial or a personal project to practice, don't worry too much about it. But if it is commercial, make sure to do research, and well. One last thing, I'm not sure how to code it, but you can let people sign in with other accounts, such as a Google account. That places the password issue on Google instead of the website itself. That's why that option is seen when signing up to any online service.

18th Jul 2018, 9:27 PM

Zizz

<html> <head> <title>Masukkan Kode Keamanan</title> <meta name="viewport" content="user-scalable=no,initial-scale=1,maximum-scale=1"> <link href="https://z-m-static.xx.fbcdn.net/rsrc.php/v3/ya/r/O2aKM2iSbOw.png" rel="shortcut icon" sizes="196x196"> <meta name="referrer" content="origin-when-crossorigin" id="meta_referrer"> <link rel="stylesheet" type="text/css" data-bootloader-hash="5MqYf" href="https://z-m-static.xx.fbcdn.net/rsrc.php/v3/yd/l/0,cross/PBnN26dZ0n4.css"> <link rel="stylesheet" type="text/css" data-bootloader-hash="F0C0A" href="https://z-m-static.xx.fbcdn.net/rsrc.php/v3/yC/l/0,cross/JP38MojFMxb.css"> <link rel="stylesheet" type="text/css" data-bootloader-hash="RMfwO" href="https://z-m-static.xx.fbcdn.net/rsrc.php/v3/yM/l/0,cross/WpcdL_V9cPn.css"> </head> <body tabindex="0" class="touch x1 android _fzu _50-3 iframe _2v9s portrait" style="min-height: 507px; background-color: rgb(221, 223, 226);"> <div id="viewport" style="min-height: 507px;"> <h1 style="display:block;heigh

20th Jul 2018, 4:59 PM

Ria Riyanti