Fixing Insecure Cryptographic Storage in Java
Note: This post is part of our series on “How to Fix Insecure Cryptographic Storage“. The series contains examples on how to implementing secure cryptography in various programming languages.
As seen below using the following code we can encrypt sensitive values such as passwords by encrypting and then adding salt to it.
import java.security.MessageDigest; public byte[] getHash(String password, byte[] salt) throws NoSuchAlgorithmException { MessageDigest digest = MessageDigest.getInstance("SHA-256"); digest.reset(); digest.update(salt); return digest.digest(password.getBytes("UTF-8")); }
One thought on “Fixing Insecure Cryptographic Storage in Java”