You are an enterprise application developer. You develop an application by using Microsoft Visual Studio .NET 2005 and .NET Framework 2.0. The application will use a custom authentication mechanism. Authentication information will be stored in a Microsoft SQL Server 2005 database table. You design the table and stored procedure that will be used for authentication. You need to ensure that the stored procedure design is as secure as possible.
What should you do?
A.
Ensure that the stored procedure receives the user name as a parameter and returns the stored password.
B.
Ensure that the stored procedure receives the user name as a parameter and returns the stored password hash.
C.
Ensure that the stored procedure receives the user name and password as parameters, compares this password with the stored password, and returns a Boolean value.
D.
Ensure that the stored procedure receives the user name and password hash as parameters, compares this password with the stored password hash, and returns a Boolean value.