Hacker News new | past | comments | ask | show | jobs | submit login

In fairness, the CBC oracle was by some margin the most widely exploited vulnerability in cryptography prior to our challenges. I credit us a little bit with popularizing the BB'98 RSA padding oracle, though, which is similarly prevalent.



Do you consider HMAC-SHA1 to still be secure for the foreseeable future? Or you know of something that can get close to breaking it? It seems to be quantum-resistant too.


I think this is answered in the 'Symmetric “Signatures”' section of the Cryptographic Right Answers blog post of 2018.

> Avoid: custom “keyed hash” constructions, HMAC-MD5, HMAC-SHA1, complex polynomial MACs, encrypted hashes, CRC.

https://latacora.micro.blog/2018/04/03/cryptographic-right-a...




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: