How Online Casinos Secure Your Passwords
How Casinos Protect Your Passwords
Let's look at an imaginary situation where an online casino actually gets hacked. It's pretty much impossible as there are multiple walls of protection, but for the sake of the situation, let's just go with it. One might think that once your passwords are out, the hackers will immediately try and enter your Facebook, Email, Twitter and much more. But it's not that simple, because online casinos don't actually know or store our passwords.. But how is that possible?
The technology that allows for this is called 'hash function'. It basically means that your password is encrypted by a one-way function - it is very easy to encrypt, but nearly impossible to decrypt to its original form.
Once we set a password, an online casino uses a very advanced hash function to encrypt it into something called 'hash'.
Let's say out password is 'bonanza', the hash then looks something like this:
If our password was 'Bonanza', meaning we only capitalized the first letter, then the hash could look something like this:
If you compare those two hashes, you can see that they differ in pretty much every single letter, even though we only changed one character in the original password.
What online casinos do is that they only store the hash of your password, and not your original password. Every time you are logging in, online casinos take your original password, encrypt it with the same hash function and compare it with the hash in the database. If the hash of your password and the hash in the database are the same, you can log in. If they are not, then you entered your password incorrectly and cannot log in.
This means that online casinos don't store your passwords in their database in case there actually was a database leak. Even if hackers do get hold of the password database, they cannot actually see the original passwords, but only the result of the hash function. Because it would take years or maybe decades for the hackers to actually crack the hash function, there is no point in worrying.
Even Hash Function May Be Susceptible to Breach
Hash function may look like a bulletproof method of securing your passwords, but it might not be a case all the time. It is very easy for hackers to simply test many passwords, encrypt them and compare with the stolen hash. If they do get the password right, they can then know which exact password you used.
This means that it is still essential that you use long and strong passwords, which are impossible to guess. Using passwords such as 'password', '123456' etc. is extremely hazardous and hackers will guess them in matter of fractions of one second.
18+, www.begambleaware.org, T&Cs apply. Gambling can be addictive. Play responsibly and accordingly to the applicable laws of your jurisdiction.