Search icon CANCEL
Subscription
0
Cart icon
Your Cart (0 item)
Close icon
You have no products in your basket yet
Save more on your purchases! discount-offer-chevron-icon
Savings automatically calculated. No voucher code required.
Arrow left icon
Explore Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Newsletter Hub
Free Learning
Arrow right icon
timer SALE ENDS IN
0 Days
:
00 Hours
:
00 Minutes
:
00 Seconds
Arrow up icon
GO TO TOP
Essential Cryptography for JavaScript Developers

You're reading from   Essential Cryptography for JavaScript Developers A practical guide to leveraging common cryptographic operations in Node.js and the browser

Arrow left icon
Product type Paperback
Published in Feb 2022
Publisher Packt
ISBN-13 9781801075336
Length 220 pages
Edition 1st Edition
Languages
Tools
Arrow right icon
Author (1):
Arrow left icon
Alessandro Segala Alessandro Segala
Author Profile Icon Alessandro Segala
Alessandro Segala
Arrow right icon
View More author details
Toc

Table of Contents (13) Chapters Close

Preface 1. Part 1 – Getting Started
2. Chapter 1: Cryptography for Developers FREE CHAPTER 3. Chapter 2: Dealing with Binary and Random Data 4. Part 2 – Using Common Cryptographic Operations with Node.js
5. Chapter 3: File and Password Hashing with Node.js 6. Chapter 4: Symmetric Encryption in Node.js 7. Chapter 5: Using Asymmetric and Hybrid Encryption in Node.js 8. Chapter 6: Digital Signatures with Node.js and Trust 9. Part 3 – Cryptography in the Browser
10. Chapter 7: Introduction to Cryptography in the Browser 11. Chapter 8: Performing Common Cryptographic Operations in the Browser 12. Other Books You May Enjoy

Older hashing functions

We began this book by promising that we wouldn't be covering older cryptographic functions, so it seems appropriate to break that promise as early as in the third chapter.

The reason why we are not apologizing for our "misdeed" is that there are lots of hashing functions that are broken and yet are still too widely used and talked about, so it is worth taking a quick look at what's wrong with them and why they should be avoided.

Among the hashing functions that you should not use, we need to highlight the following:

  • MD5 and SHA-1 are considered precursors to SHA-2. Researchers have found vulnerabilities in them that allow attackers to generate collisions in minutes (more on that shortly), so these algorithms are considered effectively broken.
  • PBKDF2 is an older key derivation function that was used for password hashing too. While not broken, it's not recommended to be used as a key derivation function anymore.

    At a high...

lock icon The rest of the chapter is locked
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Renews at $19.99/month. Cancel anytime
Banner background image