Jump to: navigation, search

Security/Guidelines/secure storage

Access to files that contain sensitive data (Including static and temporary files generated during program running) must be controlled. Such files can be used only by users with the required privileges.

Non-reversible algorithms should used to encrypt credentials that do not need to be restored for the secure storage of such credentials. The one-way non-reversible cryptographic algorithm does not use keys for encryption, and the encrypted data cannot be decrypted, effectively ensuring the confidentiality of authentication credentials.