Database Software

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Hashing data via DBMS_CRYPTO

GJoobSep 15 2016 — edited Sep 16 2016

Hi,

I am looking to store passwords in a table using hash and salt technique.

My security officer has stated that ideally this should salt using 32 - 64 byte random value, then hash with SHA-256 and stretch with PBKDF2.

None of that means anything to me so I am wondering if anyone knows if this can be done using DBMS_CRYPTO?

Also, I presume the hash column would then be stored as RAW in table?

Many Thanks.

Locked Post

New comments cannot be posted to this locked post.

Locked on Oct 14 2016

Added on Sep 15 2016

#database-security, #database-security-general

9 comments

3,467 views