Questions tagged [sha2]

Question 1

Is there any concrete/solid rationale for this choice of cipher? Seems to be the default when I connect via TLS1.2 to an Apache2 server (whatever latest version on Debian 11) with configuration lines ...

Question 2

First I am very bad in cryptographic algorithms. I found online that Argon2 is more secure than SHA-512, so I used it for password hashing. There're recommended options for Argon2: Memory: 4Gb ...

Question 3

Is there existing work (or algorithms) that explore (or exploit) imposing an i/o cost to disadvantage hashing hardware, while still using SHA2-family of hashes? Is this even possible, or would any ...

Question 4

Assuming you have a salted SHA-512 password hash with 5000 rounds. For example: {CRYPT}$6$rounds=5000$6835c5dcf0bb7310$hVod/jy7uONMSa.FVpLHb/2OrWpAj3lB/....

Question 5

I am hashing some sensitive values to support search mechanism as decrypting the values at run-time would be time consuming. I'm using SHA-512 with salt. For now, things look good. I have the hashes ...

Question 6

I am implementing an OAuth 2.0 authorisation server. As part of client registration process I want to generate the unique client identifier for this client. The method I have chosen is to take all ...

Question 7

I originally asked this on stackoverflow, but due to lack of traction and a recommendation by a user there I have asked it here too. Imagine a scenario where a client application is sending a ...

Question 8

I've created an Capture The Flag challenge for me and a few of my mates, and for the final challenge, you're goal is to log in as admin to a site. Now the site doesn't use any server side languages (...

Question 9

1) As storing passwords in plain text in databases are not secure and so is not a good practice. password stored in db = "abcde" (plain text) 2) To avoid this, passwords are stored after being hashed ...

Question 10

I am thinking if using one-way function like SHA-512 is considered to be safe for application on credit card numbers. The credit card number is 13-19 number with known BIN range (6-8 numbers) and the ...

Question 11

I came across a certificate that has a signer that is SHA1 but it is a SHA2 certificate. Is this actually allowed or is did the CA screw up ? Would it work with a TLS 1.2 negotiation?

Question 12

Some time ago I developed a simple script to detect duplicated files. It works in the following way: Locates Excel files in a folder. Obtains SHA-256 of the file. Stores a mapping between Filename - ...

Question 13

First of all, Hello! I'm new to the site, don't know any english equivalent to "yoroshiku". So, I was reading the SHA-512crypt generator documentation and found the part: The default number of ...

Question 14

I was using hash_pbkdf2 earlier today when I noticed something strange. The normal way to generate a hash is to output the entire string like the code below which outputs a 128 character string (128 ...

Question 15

What would be the implications if finding a collision in the SHA-2 hash function? Would there be a greater impact if more than one were found, or would it be the same in principal?

Stack Exchange Network

Questions tagged [sha2]

Why AES256 with SHA384 in TLS [closed]

Argon2 vs SHA-512, what's better in my case?

I/O cost and dedicated hashing hardware/ SHA2/ PBKDF2

Add additional rounds on existing SHA-512 salted hashes without knowing clear text password?

Is it possible to build a partial search mechanism on hashed values? [closed]

A Method for Generating Un-Guessable Client Identifiers

Is there a cryptographic disadvantage to applying bcrypt to an already hashed password

How Secure Would Client Side Sha-512 Be In JavaScript

Are Salt strings stored by application? [duplicate]

Is it safe to use SHA-512 to identify credit card?

SHA 1 Interemediate Signer for a SHA2 Personal Certificate [duplicate]

Does flagging a file as read-only prevent a hash from changing?

Rounds in a hashing function

Extra PBKDF2 characters in SHA-512 output

Finding SHA-2 collision

Hot Network Questions