Secure User Authentication with Java
Question
我目前正在尝试使用Java进行用户身份验证的系统,但是我的问题是,如果用户反编译我的应用程序,它将显示数据库登录信息,有什么办法可以防止这种情况的发生?
2 answers
solution1
0 2018-05-21 21:19:03
Not really, if your client app connects directly to the database. The best defense is to set up a server that does the database interactions and have the client communicate with the server. You have to decide how important your data is and whether its worth the extra effort.
solution2
0 2018-05-21 22:57:14
Take the Username and Password and hash it somehow. Store the hash and the username when a user trys to login, it first makes sure that the username exists, and then attempts to hash the entered password and username. if the hashes match, thd password was correct (this might be completely wrong if it is tell me)
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.