Time leakage effectiveness of small strings
Supposedly, a server should never use naïve comparison between secured and user-provided strings, because of time leaks.
But I wonder, during a server response there are many random factors that have a greater impact on running time.
I won… Continue reading Time leakage effectiveness of small strings