SecureString Equivalent for JavaScript?

Sandeep Singh

unread,

Aug 26, 2014, 2:16:40 PM8/26/14

to null-...@googlegroups.com

Hello All,

Do we have SecureString Equivalent for JavaScript to securely handle sensitive information in memory.

With one of the client side GUI application which is built using JavaScript and I have observed that it is storing password in memory in plain text.
Wondering if there is a proven way to mitigate this for JavaScript code?

Thanks,

Sandeep

R. siva

unread,

Aug 27, 2014, 2:07:18 AM8/27/14

to null-...@googlegroups.com

Hi Sandeep,

The variable containing the clear text password should be reset immediately after lo-gin or after the operation is completed.Use salted hash technique, So the POST request will contain the salted hash value of the sensitive data’s and the clear text data’s will not be there in the memory.

Thanks & Regards,

Siva R

Sandeep Singh

unread,

Aug 27, 2014, 6:40:02 AM8/27/14

to null-...@googlegroups.com

Thanks a lot Siva

> --
> _______________________________________________________________________________
> null - Spreading the right Information
> null Mailing list charter: http://null.co.in/section/about/null_list_charter/
> ---
> You received this message because you are subscribed to the Google Groups "null" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to null-co-in+...@googlegroups.com.
> For more options, visit https://groups.google.com/d/optout.
>

Reply all

Reply to author

Forward