danhab99@programming.dev to Programmer Humor@programming.dev · 11 months agoOrderprogramming.devimagemessage-square48fedilinkarrow-up1568arrow-down112
arrow-up1556arrow-down1imageOrderprogramming.devdanhab99@programming.dev to Programmer Humor@programming.dev · 11 months agomessage-square48fedilink
minus-squarekoper@feddit.nlcakelinkfedilinkarrow-up24·11 months agoThe real question is do you encrypt-and-sign or sign-and-encrypt?
minus-squareEufalconimorph@discuss.tchncs.delinkfedilinkarrow-up31arrow-down1·11 months agoEncrypt then sign. Always authenticate before any other operations like decryption. Don’t violate the cryptographic doom principle.
minus-squaretvbusy@lemmy.dbzer0.comlinkfedilinkEnglisharrow-up30·11 months agoEncrypt then sign. Verification is often much faster than (or at worst as fast as) decryption. Signature can also be verified without decryption key, making it possible to verify the data along the way.
The real question is do you encrypt-and-sign or sign-and-encrypt?
Encrypt then sign. Always authenticate before any other operations like decryption. Don’t violate the cryptographic doom principle.
Encrypt then sign. Verification is often much faster than (or at worst as fast as) decryption. Signature can also be verified without decryption key, making it possible to verify the data along the way.