danhab99@programming.devcake to Programmer Humor@programming.dev • 11 months agoOrderimagemessage-square6 fedilinkarrow-up113
arrow-up113imageOrderdanhab99@programming.devcake to Programmer Humor@programming.dev • 11 months agomessage-square6 Commentsfedilink
minus-squarekoper@feddit.nlhexbear0·11 months agoThe real question is do you encrypt-and-sign or sign-and-encrypt? linkfedilink
minus-squareEufalconimorph@discuss.tchncs.dehexbear1·11 months agoEncrypt then sign. Always authenticate before any other operations like decryption. Don't violate the cryptographic doom principle. linkfedilink
minus-squaretvbusy@lemmy.dbzer0.comhexbear0·11 months agoEncrypt then sign. Verification is often much faster than (or at worst as fast as) decryption. Signature can also be verified without decryption key, making it possible to verify the data along the way. linkfedilink
The real question is do you encrypt-and-sign or sign-and-encrypt?
Encrypt then sign. Always authenticate before any other operations like decryption. Don't violate the cryptographic doom principle.
Encrypt then sign. Verification is often much faster than (or at worst as fast as) decryption. Signature can also be verified without decryption key, making it possible to verify the data along the way.