Boost mailing page: Re: [hash2] Formal Review Begins

Date view	Thread view	Subject view	Author view

From: Darryl Green (darryl.green_at_[hidden])
Date: 2024-12-09 22:55:39

Next message: Peter Turcan: "Re: [hash2] Formal Review Begins"
Previous message: Andrey Semashev: "Re: [Hash2] Result extension"
In reply to: Peter Dimov: "Re: [hash2] Formal Review Begins"
Next in thread: Richard Hodges: "Re: [hash2] Formal Review Begins"

On Mon, 9 Dec 2024, 11:54â€¯pm Peter Dimov via Boost, <boost_at_[hidden]>
wrote:

> Amusingly enough, I'm _right now_ looking at an API documentation
> which requires HMAC-SHA1. :-)

Amusingly enough there isn't a problem with using HMAC-SHA1 if the key is
being used as a secret, is predictable etc. This should make its use in
message authentication perfectly ok if the conditions for effective
authentication through use of HMAC are actually met in the system in
question.

Next message: Peter Turcan: "Re: [hash2] Formal Review Begins"
Previous message: Andrey Semashev: "Re: [Hash2] Result extension"
In reply to: Peter Dimov: "Re: [hash2] Formal Review Begins"
Next in thread: Richard Hodges: "Re: [hash2] Formal Review Begins"

Date view	Thread view	Subject view	Author view