Ideas for security standards

[YoungerMax]

• Rotate database user names and passwords on a weekly basis (automated)
• Encrypt as much as possible with the Argon2 algorithm OWASP reference and guide
  • Python package is argon2-cffi
  • Docs: https://argon2-cffi.readthedocs.io/en/stable/api.html
• Public/private key user authentication
  • Public keys in database, private keys in cookie - TODO: is this a good idea?
• Conduct frequent security probes using the OWASP cheat sheets!