Reputation: 1454
Where to store database password secure in java desktop application
i was looking over the similarly questions but i didn't find the right answer and i think that there has to be some secure solution.
I have the client- server application. The clients are connecting to the central MySQL database which is on server. My problem is how to secure store database password on client desktop application. For now i am storing it in crypt form in java properties file. But properties files are readable and also after decompiling my application everybody can see which crypt function i use for encoding the password and can easily get the password. So i think that there is no way how to secure store the db password in client application, am I right?
The solution can be that the client application will do some handshake with the server to get the database password, is there any rules or patterns how to do this handshake?
Upvotes: 4
Views: 3285
Answers (1)
Related Questions
- What's the best way to store a Database Password (required in a JDBC connection string) in Java?
- What is the best practice for securely storing passwords in Java
- Where can I store saved password locally but securely in Java?
- Where should I keep the credentials of my database?
- Where do you store database passwords?
- How to secure Database Credentials for a client-server based Java Desktop Application
- Best practice for storing database password
- Where do you store your db password and get it in your J2EE app?
- Secure database password using a SQL connection
- How to effectively save database password in desktop application?