Database

security

• tokenization - replace sensitive data w non-sensitive placeholder
  • e.g. credit card -> token sent to server for verif
  • no actual enc or hashing so no overhead
• hashing a password
  • adding salt to hash