Exam SY0-601 topic 1 question 302 discussion

To mitigate the damage done by this type of data exfiltration in the future, the analyst should implement salting and hashing (choice B). Salting and hashing are techniques used to protect the security of passwords stored in a database. Salting involves adding random data, known as a "salt," to each password before it is hashed. This makes it more difficult for attackers to crack the passwords by using pre-computed hash tables, known as "rainbow tables." Hashing involves applying a one-way mathematical function, known as a "hash algorithm," to the salted password to produce a fixed-length output, known as a "hash value." This makes it impossible to determine the original password from the hash value, even if the attacker has access to the database. By implementing salting and hashing, the company can ensure that its passwords are protected even if the database is compromised

Salting and hashing are cryptographic techniques used to securely store passwords. When passwords are salted and hashed, they are transformed into a random string of characters that cannot be easily reversed back to the original password. Salting adds an additional random value to each password before hashing, making it more difficult for attackers to guess or crack passwords using precomputed tables or rainbow tables. By implementing salting and hashing, even if the username and password database is compromised, the actual passwords will be protected and not immediately usable by attackers. This provides an additional layer of security and mitigates the damage that can be done with the exposed data.

Agree with B on this one

Yep. B is the best answer here.

Key phrase is "mitigate damage done". You salt and hash in case the db gets out.

Correct answer is B: Username and password shouldn't be stored as plain text.