Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
Example security code:
a35sfj9ksdf
How can I ask a user for several characters (e.g. first, forth and ninth) of their security code and then check these? The main difficulty comes in how do I store the seucurity code in an encrypted form – if I were to store each character individually, then the encryption would be incredibly easy to break.
A possibility that was described neither here nor at How to store and verify digits chosen at random from a PIN/Password is this:
11)
of the salt with the char from the security code and hash it securely
Now you have to store the manageable quantity of n+1 fields for a security code of length n and can still verify single (position,char) tuples