Why char array is preferred to store password than String in Java? | Sololearn: Learn to code for FREE!
New course! Every coder should learn Generative AI!
Try a free lesson
+ 1

Why char array is preferred to store password than String in Java?

That's what I wanna know why can't store in an array

javaarraystringinpasswordstore
25th May 2017, 7:13 PM
Saurabh Sharma
Saurabh Sharma - avatar
1 Answer
+ 5
Strings are immutable . That means once you've created the String, if another process can dump memory, there's no way (aside from reflection ) you can get rid of the data before garbage collection kicks in. With an array, you can explicitly wipe the data after you're done with it. You can overwrite the array with anything you like, and the password won't be present anywhere in the system, even before garbage collection. So yes, this is a security concern - but even using char[] only reduces the window of opportunity for an attacker, and it's only for this specific type of attack.
25th May 2017, 7:21 PM
Eremie Gillowei
Eremie Gillowei - avatar

Often have questions like this?

Learn more efficiently, for free:

See all courses
Hot today
Code optimization | C++
1 Votes
Help pls/ python
1 Votes
C++ students' scores program
0 Votes
Which informatic language do you recommend for beginners? (For design in websites)
0 Votes
Find saved code
0 Votes
Deploy Website
0 Votes
Projects not Working
3 Votes
React course
0 Votes
How do i create different pages in html coding only ?
0 Votes
Se connecter à la base de données mysql avec php
0 Votes