I am using encryption on the server-side to store passwords in the database. My concern is for the client-side. Do I need to use any encryption technique or HTTPS/SSL is sufficient to rely upon?
I would say A valid SSL certificate is Enough.
the client side hash should be treated as if it was the user's direct password. It provides no more or no less security on the server than if the user had directly given their password and should be protected as such. more info...