diff options
| -rw-r--r-- | yuck.mdwn | 3 |
1 files changed, 2 insertions, 1 deletions
@@ -128,7 +128,8 @@ reference in discussions. minimises damage if they leak. Credentials SHOULD be stored encrypted using a respected encryption algorithm (such as scrypt) and using per-credential salting. Or something stronger - may be implemented instead. + may be implemented instead. Additionally, all the credntial + records SHOULD be encrypted for an additional layer of defense. * (MFA) Yuck MUST support multi-factor authentication using secure factors. * (PROTOS) Yuck MUST use secure protocols to authenticate users |