How many of us know exactly how users passwords are stored in your application 🤔

Is option "plain text" is decilne of hashing algorithm, and should never be used?

I'm a former KeyPass and 1Password user. I now use Bitwarden and am very pleased with both PC and Mobile apps (as well as their Chrome extension). One of the reasons I moved to Bitwarden was its ease of use - with which my wife agreed. Here is Bitwarden's page where they discuss encryption methods as it relates to storing passwords and encrypting a user's 'vault'. https://bitwarden.com/help/artic... [To answer your question: pbkdf2]

For me, it 3rd option bcrypt.

having passwords one-way hashed is critical to protect accounts. I don't think 'plain text' should be in the option anymore..:) PBKDF2 with unique salt and iterations is most secure. FYI: list of most commonly used algos: https://www.loginradius.com/docs...

How about we eliminate password! I'm working on a product which will eliminate passwords for everyone. We are soon releasing the API for public so you can also onboard users hassle free and without the need to maintain any kind of database for passwords.

Happy to hear about your upcoming launch. Wishes in advance :) We are hearing talks about eliminating passwords for quite some time. We need something robust enough to handle all the daily day-to-day requirements. Think about the numerous applications and websites which are dependent on passwords. How do we migrate them to a password-less environment? How do we handle the lost password requirement for password-less tool/technique/process? Think big ,for this is an opportunity which has the potential to impact more people than what we can imagine.