Outer Web | Explore

Explore >> Select a destination

You are here		www.cossacklabs.com Security tips on using YubiKey and FIDO U2F \| Cossack Labs
\|	\|	infinum.com Out with '12345' - Discover Passwordless Authentication Methods \| Infinum	2.6 parsecs away Travel
\|	\|	Enhance your app's security and user experience with passwordless authentication methods. Say goodbye to passwords and hello to convenience.	2.6 parsecs away Travel
\|	\|	blog.gravatar.com Understanding Passwordless Authentication Standards - Gravatar Blog	3.1 parsecs away Travel
\|	\|	Explore passwordless authentication: Understand its significance and how it can enhance user experiences while boosting security.	3.1 parsecs away Travel
\|	\|	fingerprint.com Is Passwordless the Future of Authentication?	2.9 parsecs away Travel
\|	\|	Explore the benefits and challenges of passwordless authentication for securing online interactions.	2.9 parsecs away Travel
\|	\|	myers.io Why You Shouldnt Hash on the Client - myers.io	21.2 parsecs away Travel
\|		Every so often I see posts on Stack Exchange, or Hacker News where someone has figured out that their passwords are being sent to the server and the server can see them! The logic that we see is that if the password is hashed client side, then only the hash needs to be sent to the server, so the server never knows the password. Unfortunately, I sometimes even see this go one step further when people suggest that with this arrangement, HTTPS isnt required. Wrong.	21.2 parsecs away Travel