Part I:Choose one of the following topics( in short 100 - 200 words is good enough) :
1. Why cookies and sessions are important in web development?
2. How basic authentication differ from form-based authentication?
3. How does JavaScript validation differ from PHP validation? (This topic is limited to 2 initial posts.)
4. Why PHP validation should always be provided even after JavaScript validation is provided on the client side? (Limited to 2 initial posts)
5. Why must a cookie be transferred at the start of a program? (Limited to 2 initial posts)
6. Do a little research on the hash function. Why is the hash function a powerful security measure?
7. What is meant by salting a password? How does it improve password security? (Limited to 2 initial posts.)
8. In practice, form-based authentication is implemented over HTTPS which establishes a secure connection between a client and a server, so user credentials are secured not only at rest but also in transit. Explain how user credentials are secured in this process.
Part II:
reply to the following posts( separately and in short)
1.
Password Salting
COLLAPSE
"Salting"creates additional complexity in a password to make it difficult to break by adding several additional random characters to the users' password before it is hashed.
The "Salt" must also be stored separately, not hashed. So it can be appended to the password that the users enter so that the final combination result matched the salted password that was hashed and stored.
Since salt is very helpful in securing the table from the hackers it helps a lot in protectingthe passwords from the rainbow table attack.
2.Salting a Password and Its Benefits
COLLAPSE
When dealing with sensitive information such as passwords,security is the first priority no matter what. Normally, passwords handled by a form and sent into a databaseare in plain text format, which can be a security disaster should a hacker crack the system and gain access to the database. Such an event would compromise the site as well as the personal information of the users. In this situation, you must store passwords in such a way that even those who could gain access have no use for it. To do this, you cansaltthe password. Salting a password meansgenerating a random sequence of characters that help obscure the password when stored.This helps to secure the password since once salted, it becomes unusable for any malicious third party. The extra characters generated do not come from the user but rather from the back end.