How secure is this method of user authorization?

S

Satisfied IT2018-05-31 10:57:03

ASP.NET

Satisfied IT, 2018-05-31 10:57:03

The customer wants authorization without a login / password or through social networks, but with the help of a small file. Thus, the user, having entered the authorization page, specifies the required file (the allowable size will be limited). Several parameters are calculated from this file, for example SHA1, SHA256, CRC64 and compared with the data in the database (the issue of registration is not currently considered), if all the data match, then we give the user access.
Question: how safe is it?

Reply

Answer the question

In order to leave comments, you need to log in

2 answer(s)

A

Andrew, 2018-05-31
specialist @borisdenis

Safer than login-password/authorization through third parties. Login + password = key up to a hundred bytes long (usually).
A file of at least a kilobyte will be much safer.

R

Roman, 2018-05-31
@yarosroman

Understand the terms, authorization - the allocation of the necessary rights, and authentication - user recognition, verification of credentials. And two-factor authentication is stronger.