here is an article that is on use MD5 encryption to store passwords in a database.http://aspnet.4guysfromrolla.com/articles/103002-1.aspxNote: MD5 is not decyrptable (you cannot retreive the users password if they forget it, you'll have to give then a new one.)If you use SHA1 encryption, it is decryptable.