70-465 Question #96: Real Exam Question with Answer & Explanation

Question

You work as a Developer at ABC.com. All databases are hosted on Windows Server 2012 servers running SQL Server 2012. You are developing a custom CRM application named CorpCRM. The application will store usernames and passwords in a SQL Server 2012 database named CorpCRMDB1. You need to ensure the usernames and passwords are secure. Which of the following would be most suitable password storage solution?

Options

• AOne-way encryption
• BReversible encryption
• CEncrypting File System (EFS)
• DSecure Sockets Layer (SSL)

Explanation

To ensure usernames and passwords in the CorpCRMDB1 database are secure, the most suitable solution is one-way encryption, commonly implemented through hashing, which prevents the original passwords from being retrieved even if the database is compromised.

Common mistakes.

• B. Reversible encryption allows the original password to be decrypted from its stored form, which poses a significant security risk if the encryption key is compromised, making it less secure than one-way hashing for password storage.
• C. Encrypting File System (EFS) encrypts files and folders at the operating system level, securing the database files at rest, but it does not directly secure the passwords within the database application layer or dictate the method of password storage itself.
• D. Secure Sockets Layer (SSL) is a protocol used to encrypt data in transit over a network, securing communication between the application and the database server, but it does not address how passwords are stored at rest within the database.

Concept tested. Secure password storage using hashing

Reference. https://learn.microsoft.com/en-us/aspnet/identity/overview/features-api/password-storage-in-aspnet-identity

No community discussion yet for this question.