I’m almost finishing here the Chapter 1 of the M310, and after all those lessons I would like to know what is more secure to use in authentication when it comes to IoT applications with a very small team:
1 - SCRAM-SHA-1
2 - SCRAM-SHA-256
3 - x.509
I read in some article that using a certificate is more secure because it has more options, but it is harder to maintain and make a secure certificate.
If I use SCRAM-SHA-1, what is the best practices to make a password always secure? Like for example, change the password from month to month.