Articles tagged "Security"
Posts on Orankit tagged "Security". 6 articles.
How to choose between MD5, SHA-1, and SHA-256 in practice
Differences between MD5, SHA-1, and SHA-256, the state of collision attacks, and which to use for checksums vs signatures vs password storage.
HTML entity escaping: why each context needs its own rules
HTML body, attribute values, JavaScript strings, and URLs each demand different escapes. The five core entities, double-escaping pitfalls, and the safe approach.
Reading a JWT: header, payload, and signature explained
Why a JWT is "three Base64URL strings joined by dots", what each section contains, and how signature verification works in practice.
Password entropy, length, and character classes: speaking strength in numbers
Why password strength is determined by length and character set, the entropy formula in bits, brute-force resistance estimates, and practical targets for real-world use.
Punycode and internationalized domain names: what happens behind a Unicode URL
How a domain like 日本.jp gets translated to ASCII via Punycode, the homograph attack risk it created, and how browsers decide whether to show Unicode or Punycode.
PRNG vs CSPRNG: when each is the right random
How pseudo-random and cryptographically secure random differ, why Math.random() is unsafe for security, and the bias trap of `% N`.