The latest articles on DEV Community by Puneet Singh (@lazysingh). https://dev.to/lazysingh https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F461547%2Feae34379-c439-40fc-890a-21d33369f63a.jpg https://dev.to/lazysingh en Puneet Singh Fri, 28 Oct 2022 08:03:58 +0000 https://dev.to/mojoauth/it-is-2022-why-are-businesses-still-using-passwords-3gba https://dev.to/mojoauth/it-is-2022-why-are-businesses-still-using-passwords-3gba <p>Ever since its development, passwords have been the most often used type of authentication to access an online account, computer system, data, or protected space. And here are a few possible answers to why businesses are still using passwords-based authentication: Easy to implement, and a great amount of resources and help are available on the internet No compatibility or software issues with using password-based authentication No extra hardware is needed to run password-based authentication Users are well-educated on how to use password-based authentication Or maybe password-based authentication has been working for businesses for so long that some businesses never thought of switching to better options.</p> <p><a href="https://mojoauth.com/blog/why-are-businesses-still-using-passwords/">Read On</a></p> passwordless authentication Puneet Singh Sun, 17 Apr 2022 18:30:01 +0000 https://dev.to/mojoauth/best-practices-for-one-time-passwords-41cg https://dev.to/mojoauth/best-practices-for-one-time-passwords-41cg <p>Signing users is a process to prove that the person trying to sign in is the same person who originally registered on your application, and many applications are using passwords to do so. However, traditional, user-created, static, or fixed passwords are known to be vulnerable. There are many traps waiting for your users and application. To maintain security, business owners have started to consider switching from passwords to OTPs. What is an OTP An OTP or One-time Password is a password that is valid for a short period of time and can be used only once to verify a single login session or transaction.</p> <p><a href="https://mojoauth.com/blog/best-practices-for-otp-authentication/">Read On</a></p> security otp passwordless Puneet Singh Thu, 10 Mar 2022 09:11:23 +0000 https://dev.to/mojoauth/send-phone-otp-in-nodejs-2b14 https://dev.to/mojoauth/send-phone-otp-in-nodejs-2b14 <p>If you are comfortable with programming in Node.js, you can send text messages with Twilio! Just follow these simple steps, and in the next minutes, you will have sent yourself an SMS using Node.js. Step 1: Creating a Twilio Account Go to Twilio’s new account page, sign up for an account, and provide your details. Verify your email address Verify a phone number. Getting a Phone Number for Twilio Buy a Number page in Console.</p> <p><a href="https://mojoauth.com/blog/send-phone-otp-in-nodejs/">Read On</a></p> security otp node Puneet Singh Sun, 13 Feb 2022 18:30:00 +0000 https://dev.to/mojoauth/hashing-a-password-in-nodejs-19nl https://dev.to/mojoauth/hashing-a-password-in-nodejs-19nl <p>We must not save users’ passwords in the database’s plain text in any application as it poses a severe security threat. We should always save a password in the hashed format. But not all hashing functions are suitable to store passwords. Popular hashing functions like sha1 and md5 are not good for passwords. We will learn how to hash a password in NodeJs using better-suited functions such as Bcrypt, PBKDF2, and Argon2.</p> <p><a href="https://mojoauth.com/blog/hashing-passwords-in-nodejs/">Read On</a></p> security node