Sensitive Data Storage - Best Practices

Posted by Kenneth on Programmers See other posts from Programmers or by Kenneth
Published on 2011-03-03T03:57:04Z Indexed on 2011/03/03 7:32 UTC
Read the original article Hit count: 442

Filed under:

I recently started working on a personal project where I was connecting to a database using Java. This got me thinking. I have to provide the login information for a database account on the DB server in order to access the database. But if I hard code it in then it would be possible for someone to decompile the program and extract that login info. If I store it in an external setup file then the same problem exists only it would be even easier for them to get it. I could encrypt the data before storing it in either place but it seems like that's not really a fail safe either and I'm no encryption expert by any means. So what are some best practices for storing sensitive setup data for a program?

© Programmers or respective owner

Related posts about best-practices

Related posts about data