views:

49

answers:

2

I am working on a system which is going to be applied in the real environment. I need to make high security mechanism for the system, one of them is encryption for user's passwords in my database.

I prefer to use one way encryption method to two way encryption, the problem is I want to choose a good algorithm which has good performance and have reasonable reasons to convince my partners why i choose one algorithm instead of other.

Can you give me some tips for doing that?

+1  A: 

i don't know what kind of argument you're looking for but :

SHA is a good one-way hash functions.

http://en.wikipedia.org/wiki/Secure_Hash_Algorithm

racar
i don't get what u mean by argument ?
Alaa
As an argument to present to your partners to choose one algorithm opposed to another.
Anthony Forloney
Actually i am working on my graduation project and I have to tell my partners why i make every line in the code in order to be ready to discuss it in front of doctors and professors :)
Alaa
Then it might be a good idea to do your own thinking.
Matt Ball
+2  A: 

Don't just use a simple one-way hash.

Use something like PBKDF2 or bcrypt instead. I'm sure there will be good, free, off-the-shelf implementations available for Java (assuming that they're not already included in the JRE itself).

LukeH