Join Us

Store API Credentials Safely: Obfuscation Before Encryption is Key

Open TLDR

The challenge is that we can’t use hashing, as we would do for user passwords. We need the credentials to access the API, hence we need to reveal them upon retrieval from store. Encryption alone has its risks, however. In the simplest case, a mindless user chooses the word ‘*password* for the password and suddenly the potential hacker may have an easier task because they only need to try until *password* is revealed. One solution is to obfuscate the credentials characters among a larger string — like spreading some pepper in a plate.

image

Miguel Hacker Noon profile picture

@zapalote

Miguel

Scientist by training, creative spirit by choice.

Anvil

The paperwork API that scales with your tech stack.

Related Stories

Subject Matter
How I Made my First AI YouTuber by @omodaka9375
#artificial-intelligence
ATT&CK vs. D3FEND - Get Everyone On the Same Page by @z3nch4n
#cybersecurity
GraphQL vs REST: How To Choose One Over The Other by @yaf
#graphql
The All-Purpose Programmer: Episode 1 – “Hello World” by @halexmorph
#php

Tags

#api#encryption#security#credentials#api-credential-safety#obfuscate-api-credential#encrypt-api-credential#hackernoon-top-story
Join Hacker Noon

Create your free account to unlock your custom reading experience.

%post_title%

Cryptovixens Source

Facebook
Twitter
LinkedIn
Pinterest
Crypto
Crypto
Scouring the web for the most relevant content for our readers.

Responses

Your email address will not be published. Required fields are marked *

Follow Us:
Facebook Twitter Instagram
About

CryptoVixens is a Non-Profit Decentralized Autonomous Organization dedicated to inspiring women and girls to join founding blockchain teams founders, co-founders or advisors – regardless of technical expertise.

Get Started
Address
  • CryptoVixens DAO Mailing Address
  • 18124 Wedge Parkway, Suite 1074, Reno NV 89511
  • +1 415 360 3100
  • [email protected]
Explore
Latest News

Report

Harassment or bullying behavior
Contains mature or sensitive content
Contains misleading or false information
Contains abusive or derogatory content
Contains spam, fake content or potential malware

Block Member?

Please confirm you want to block this member.

You will no longer be able to:

  • See blocked member's posts
  • Mention this member in posts
  • Invite this member to groups
  • Message this member
  • Add this member as a connection

Please note: This action will also remove this member from your connections and send a report to the site admin. Please allow a few minutes for this process to complete.

Report

You have already reported this .

Get 20% Discount

Sign up to receive updates, promotions, and sneak peaks of upcoming products. Plus 20% off your next order.

Promotion nulla vitae elit libero a pharetra augue

Nullam quis risus eget urna mollis ornare vel eu leo. Aenean lacinia bibendum nulla sed 

  • @abble
Facebook Twitter Youtube Instagram Linkedin