Skip to Main Content
Forums

Java Security

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

How to protect a fix coded password?

843811Sep 13 2002 — edited Jul 9 2003
Hello Java Folks

My software acceses to a ms access database to get some data. This database is protected by one password.

In the persistence layer of my software, I declared this password like that:
private static final String PASSWORD = "Blabla";
This simple solution is NOT secure. With any Java decompiler, I'm able to read this password from the compiled class file.

So, even if I put an encryption algorithm, everyone can read it from the decompiled class file.

Do you know a better idea?
Comments
Locked Post
New comments cannot be posted to this locked post.
Post Details
Locked on Aug 6 2003
Added on Sep 13 2002
#other-security-apis-tools-and-issues
35 comments
551 views