Show/Hide Menu
Hide/Show Apps
Logout
Türkçe
Türkçe
Search
Search
Login
Login
OpenMETU
OpenMETU
About
About
Open Science Policy
Open Science Policy
Open Access Guideline
Open Access Guideline
Postgraduate Thesis Guideline
Postgraduate Thesis Guideline
Communities & Collections
Communities & Collections
Help
Help
Frequently Asked Questions
Frequently Asked Questions
Guides
Guides
Thesis submission
Thesis submission
MS without thesis term project submission
MS without thesis term project submission
Publication submission with DOI
Publication submission with DOI
Publication submission
Publication submission
Supporting Information
Supporting Information
General Information
General Information
Copyright, Embargo and License
Copyright, Embargo and License
Contact us
Contact us
A Comprehensive Survey on Password Storage Security
Download
A_Comprehensive_Survey_on_Secure_Password_Storage.pdf
Date
2025-6-16
Author
Oruntak, Murat Can
Metadata
Show full item record
This work is licensed under a
Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International License
.
Item Usage Stats
2398
views
1000
downloads
Cite This
Weak password storage practices still are a major vulnerability in modern systems. Despite the rise of alternative authentication methods, passwords remain the most dominant form of access control across various sectors which makes their secure storage essential. This report provides a comprehensive analysis of password storage security, with a focus on common malpractices, attack vectors, established industry standards, and potential future directions. It examines the historical evolution of password storage, highlighting notable breaches and vulnerabilities caused by weak or outdated hashing mechanisms and poor implementation decisions. Key concepts such as hashing and salting are discussed in the context of secure storage architecture, alongside additional measures like peppering and honeywords. Widely accepted standards including NIST guidelines, OWASP recommendations, and ISO/IEC frameworks are reviewed to outline best practices. Finally, the report explores emerging solutions such as passkeys and two factor authentication, aiming to align secure storage mechanisms with modern authentication needs. Through this structured exploration, the study aims to serve as a comprehensive and practical guide to password storage security.
Subject Keywords
Password
,
Cyber Security
,
Hash Functions
,
Password Storage
URI
https://hdl.handle.net/11511/115480
Collections
Graduate School of Informatics, Term Project
Citation Formats
IEEE
ACM
APA
CHICAGO
MLA
BibTeX
M. C. Oruntak, “A Comprehensive Survey on Password Storage Security,” M.S. - Master Of Science Without Thesis, Middle East Technical University, 2025.
