This article explains why encrypting sensitive fields like passwords, phone numbers, and ID numbers is essential, details a balanced approach using AES‑GCM encryption, HMAC indexes, and masked fields, and shares real‑world lessons from implementing the solution in a production system.
This article explains the technical mechanism behind WeChat's offline payment, detailing how a time‑based one‑time dynamic code is generated on the device, verified by the server, and destroyed to protect user accounts even without network connectivity.
To protect sensitive data in third‑party API integrations, this guide outlines a three‑layer security architecture—mutual TLS for channel protection, HMAC‑based request signing for integrity, and RSA encryption for data confidentiality—plus key management, monitoring, performance considerations, and implementation roadmaps.
This article explains the principles of Message Authentication Codes (MAC), details the operation and characteristics of HMAC and CMAC, compares common algorithms, and provides Python code examples for generating and verifying these codes to ensure data integrity and authenticity.
This article demonstrates how to implement common password‑encryption techniques in Python—including plain MD5, MD5 with salts, SHA1, SHA256, and HMAC—by wrapping them in a reusable class and showing sample code and output for each method.
This article explains how Python's hashlib and hmac modules can be applied in API automation to compute hashes, generate salted password hashes, create HMACs, verify data integrity, encrypt sensitive information, and produce secure tokens, providing ten practical code examples.
This article traces the evolution from simple web page browsing to modern token‑based authentication, explaining the scalability and security problems of server‑side sessions and showing how signed, stateless tokens using HMAC‑SHA256 eliminate those issues while supporting horizontal scaling and cross‑platform access.
This article provides a detailed overview of authentication mechanisms, covering UI login methods such as Basic, LDAP, OAuth, Kerberos, and SSO, API call verification techniques like HMAC and JWT, and practical design guidelines for implementing SSO with CAS in micro‑service architectures.
This article provides a comprehensive guide to authentication, covering basic username/password login, LDAP, OAuth 2.0, Kerberos, SSO with CAS, as well as API authentication methods like HMAC and JWT, and offers design recommendations for both UI and API security in micro‑service architectures.
This article introduces common encryption algorithms—including symmetric, asymmetric, and digital signature methods—and provides detailed Go code examples for MD5, HMAC, SHA1, AES (with various modes), and RSA, helping developers understand and implement secure cryptographic operations in Go.
This article explains PHP’s hash_hmac() function, detailing its signature, the required algorithm, data, key, and raw_output parameters, describing the returned hash format, and providing a complete example with code and the resulting hash output.
hash_hmac_file() is a PHP function that computes a keyed HMAC hash of a file using a specified algorithm and secret key, returning either a raw binary digest or a lowercase hexadecimal string, with detailed parameter explanations and a complete usage example.
This article traces the evolution from early stateless web browsing to modern token‑based authentication, explaining how session management challenges led to centralized stores, their drawbacks, and how signed tokens using HMAC‑SHA256 provide a scalable, secure, and truly stateless alternative.
This article introduces various cryptographic primitives—including MD, SHA, MAC, and digital signature algorithms such as RSA, DSA, and ECDSA—explains their usage and security considerations, and provides complete .NET Core code examples using the BouncyCastle library for implementation.
The article traces the history of web session handling, explains the scalability and security challenges of server‑side sessions, and introduces stateless token‑based authentication using signed HMAC‑SHA256 tokens as a modern solution for scalable, secure web applications.
