In the process of writing the final report for a penetration test, which of the following recommendations would be the BEST to include for remediation when discovered that passwords are being stored in clear text?
Enforce a password policy requiring increased complexity.
Encrypt the passwords with a symmetric key.
Hash and salt each password before storage.
Store the passwords using base64 encoding.