Classic ASP Discussion - Security

Print Page | Close Window

Security - encryption

Printed From: Web Wiz Forums
Category: General Discussion
Forum Name: Classic ASP Discussion
Forum Description: Discussion on Active Server Pages (Classic ASP).
URL: https://forums.webwiz.net/forum_posts.asp?TID=12269
Printed Date: 30 March 2026 at 11:31pm
Software Version: Web Wiz Forums 12.08 - https://www.webwizforums.com

Topic: Security - encryption

Posted By: Mattblack
Subject: Security - encryption
Date Posted: 21 October 2004 at 11:39am

Peeps,

How do I encrypt, at a basic level, the password field being sent and received to a database???

This is part of a college project using ASP. I cannot find any other way of encrypting the data at 128bit level. This is a necessity for the project. I have tried everything.

Please please help

Replies:

Posted By: Mart
Date Posted: 21 October 2004 at 12:07pm

Do you want an encryption or hash algorithm?

An encryption algorithm will be able to be encrypted and decrypted (useful for CC#'s)
A hash algorithm will be able to be encrypted and verified (NOT decrypted) - Useful for storing information that only needs to be verified like passwords.

Posted By: Mattblack
Date Posted: 23 October 2004 at 4:53am

sounds like the 2nd one mate. Which is best? My teacher will know and rip me to bits if ive not put security in it. lol. DOH!

The site im doing is http://www.rochdaleoffroad.co.uk - www.rochdaleoffroad.co.uk

Posted By: Mart
Date Posted: 23 October 2004 at 6:34am

Ok, check out the 1wayhash include file in web wiz forums (think its in the functions folder)

Posted By: Mattblack
Date Posted: 23 October 2004 at 7:15am

getting my head round it now, thanks. Will let you know how i get on

Posted By: Mattblack
Date Posted: 23 October 2004 at 7:51am

fantastic! ive done it, works fantastic.

Thanks so much

Posted By: Mattblack
Date Posted: 23 October 2004 at 1:11pm

now ive got my head round this. Ive realised that this is server-side (obviously).

BUT - is there any way of securing it at client end before bunging it over to the server? Teacher will pick up on it and say that the traffic can be tampered with or listened in to and bla bla bla. Just trying to look at all angles.

so, is it possible to encrypt at client end AND server? Either with asp or .net.

Posted By: Mart
Date Posted: 23 October 2004 at 2:12pm

Your best option is to use SSL, just purhcase a certificate

Posted By: Mart
Date Posted: 23 October 2004 at 2:28pm

Or you could do it client side:

http://forums.webwiz.net/forum_posts.asp?TID=10773&KW=client+side+encryption - http://forums.webwiz.net/forum_posts.asp?TID=10 773&KW=client+side+encryption

but as you can tell I am not fond of that

Posted By: Mattblack
Date Posted: 24 October 2004 at 12:35pm

will look at client side, which will be to go WITH the server side. SSL aint an option, its a college project and im not prepared to splash out for it. Will let u know how i get on with client side