Collaborate Disseminate
Is there any concrete/solid rationale for this choice of cipher? Seems to be the default when I connect via TLS1.2 to an Apache2 server (whatever latest version on Debian 11) with configuration lines SSLCipherSuite HIGH:!aNULL and SSLProt… Continue reading Why AES256 with SHA384 in TLS
First I am very bad in cryptographic algorithms.
I found online that Argon2 is more secure than SHA-512, so I used it for password hashing.
There’re recommended options for Argon2:
Memory: 4Gb
Iterations: 4 or more
On my ancient server i… Continue reading Argon2 vs SHA-512, what’s better in my case?
Assuming you have a salted SHA-512 password hash with 5000 rounds. For example:
{CRYPT}$6$rounds=5000$6835c5dcf0bb7310$hVod/jy7uONMSa.FVpLHb/2OrWpAj3lB/.RWdvgd3YaQAnzN3rorGhaziswwGsHfOWZYkLwXhHKnCy5By2CKr0
Could one add m… Continue reading Add additional rounds on existing SHA-512 salted hashes without knowing clear text password?
I am hashing some sensitive values to support search mechanism as decrypting the values at run-time would be time consuming. I’m using SHA-512 with salt.
For now, things look good. I have the hashes of the original values st… Continue reading Is it possible to build a partial search mechanism on hashed values? [on hold]
Hashes are used widely in cybersecurity, but what are they and what can they reliably tell us about malware? If you’ve ever wondered, find out here!
The post What is a Hash? (And How Does It Work?) appeared first on Security Boulevard.
Continue reading What is a Hash? (And How Does It Work?)
I am implementing an OAuth 2.0 authorisation server. As part of client registration process I want to generate the unique client identifier for this client.
The method I have chosen is to take all the client registration information and h… Continue reading A Method for Generating Un-Guessable Client Identifiers
Is there an implementation of DigestClient out in the wild that supports the SHA2 family of hash algorithms? The current implementation of DigestClient will fail when the algorithm challenge is anything but “md5” or “md5-ses… Continue reading Digest authentication with SHA2
I am implementing hmac-sha-512 in an integrated system. However, one subsystem is only supports the use of 256-bit keys.
I read in https://tools.ietf.org/html/rfc4868 that:
However, note that [HMAC] strongly discourages … Continue reading hmac-sha-512 with a 256-bit key
I am implementing hmac-sha-512 in an integrated system. However, one subsystem is only supports the use of 256-bit keys.
I read in https://tools.ietf.org/html/rfc4868 that:
However, note that [HMAC] strongly discourages … Continue reading hmac-sha-512 with a 256-bit key
I originally asked this on stackoverflow, but due to lack of traction and a recommendation by a user there I have asked it here too.
Imagine a scenario where a client application is sending a password to a backend server so … Continue reading Is there a cryptographic disadvantage to applying bcrypt to an already hashed password