How encrypt and decrypt password ?

hi,everyone i m creating a login page and i want to encrypt the password before insert that in to database and decrypt it before verification can enybody tell how to do this ?

you should be aware of string manipulation and you can use some formula which will convert the actual string and which will getback to actual string..

you should be aware of string manipulation and you can use some formula which will convert the actual string and which will getback to actual string..

thanx but i m not satisfied....ok bye the way can u tell me how to write algorithm for it ? or if any site from from where i can download or seen that algorithm...ok plz reply soon

Another alternative which I sometimes use is to encrypt the password into some other form, which you then store in the database, and then you check that the entered password encrypts to the same value for verification purposes.

This means the encryption doesn't need to be 'reversible' - you never need to get the password back from the stored value, so it's no use to anyone even if they steal the data, and you can encrypt the entered password before sending that for storing or verification, so you never send plain text passwords outside your application.

If you don't need to be particularly secure, here's a bit of PHP that you could easily convert to C or VB that turns a text password into a lightly-encrypted 'long integer'.

Store the result of the function as your password in the database. Then when you want to check a password, just hash the entered text and see if the result matches what was stored. That way you never store the actual password, and it is very difficult to turn the stored value back into anything usable.

Regards,
Steve

thanx but i m not satisfied....ok bye the way can u tell me how to write algorithm for it ? or if any site from from where i can download or seen that algorithm...ok plz reply soon

http://www.codeproject.com/useritems/Encrypt_an_string.asp

and there are more search in gogle.

you should undersatnd the algoritham then use it


Good luck...

Another alternative which I sometimes use is to encrypt the password into some other form, which you then store in the database, and then you check that the entered password encrypts to the same value for verification purposes.

This means the encryption doesn't need to be 'reversible' - you never need to get the password back from the stored value, so it's no use to anyone even if they steal the data, and you can encrypt the entered password before sending that for storing or verification, so you never send plain text passwords outside your application.

If you don't need to be particularly secure, here's a bit of PHP that you could easily convert to C or VB that turns a text password into a lightly-encrypted 'long integer'.

Store the result of the function as your password in the database. Then when you want to check a password, just hash the entered text and see if the result matches what was stored. That way you never store the actual password, and it is very difficult to turn the stored value back into anything usable.

Expand|Select|Wrap|Line Numbers

1. function hash($key) {
2.   $h = 0;
3.  
4.   for ($n = 0 ; $n < strlen($key) ; $n++) {
5.     $h = (($h & 0x3FAFCF) * 131) + ord($key{$n});
6.   }
7.   return $h;
8. }
9.  

Regards,
Steve

.NET has built in functions to do encryption and hashes

Here is a piece of code i use to create a MD5 Hash