Password checking

Password checking

The passwords’ storage is unencrypted in a database, where a file can be a security flaw. Indeed, if someone can access to all passwords, they are compromised. To prevent this case, we can hash all passwords so we will not store unencrypted passwords. Then the user authentication will be done with the hash sent compared with hash stored. The authentication will be even more secured because the strength of the hash function is that they are almost impossible to reverse.