IEEE

A reconfigurable hardware unit for the HMAC algorithm

Abstract: HMAC is a shared-key security algorithm that uses hash functions for message authentication and data integrity. The most popular hash functions used with HMAC are MD5, SHA-1, and RIPEMD-160, ...
IEEE

Enhancing Security in a Test Portal with Email OTP Verification using HMAC Algorithm

Abstract: As technology-related test portals become more popular, ensuring user security becomes increasingly important. In this research work, a new approach is proposed for email OTP verification ...
GitHub

HMAC-SHA1-TOTP Auth Algorithm for Embedded Devices

Implementation of the TOTP authentication algorithm written in C, suitable for Embedded application or other enviroments where a low memory impact is required. The ...
GitHub

Multiple valid JWT Signatures for HMAC Algorithms (base64 malleability)

When using HMAC algorithms (HS256, HS384, HS512), python-jose and PyJWT exhibit different signature validation behavior compared to Node's jsonwebtoken library. Multiple valid signature endings are ...
Threat Post

Timing attack in Google Keyczar library

I recently found a security flaw in the Google Keyczar crypto library. The impact was that an attacker could forge signatures for data that was “signed” with the SHA-1 HMAC algorithm (the default ...