I read about password storage and basically found 2 commonly used methods.
- encryption of all passwords stored with one key.
- Using hashes
Is there a drawback in storing the password “encrypted by itself”, that is, txt encryption that speaks password1to the password password1without keeping it unencrypted, and when the user wants to log in, decrypt, compare and provide access (or not)?
I'm not very literate on this topic, so can someone enlighten me?
source
share