rugk

Member since
rugk

Recent Docs Activity

View all activity
Page Date Comment

SubtleCrypto.encrypt()


explain that manually adding authentication is hard and as by the rule "never implement your own crypto" you should really use the standardized, authenticated crypto instead

<fieldset>: The Field Set element


Stackoverflow answer says, this has been fixed with v53 of Firefox, thus I remove this link

SubtleCrypto.sign()


mention that the algorithm is the same (verify=re-hash)

HmacKeyGenParams


HMAC construction is secure even if the underlaying hash is broken (there are collissions), see https://en.wikipedia.org/wiki/HMAC#Design_principles for more information

X-Content-Type-Options


The link makes no sense, as it discusses specific infrastructure and not only nosniff