Salted Password Hashing with Argon2, Scrypt, Bcrypt, and PBKDF2
If you're wondering which cryptography library you should use in your project, this should help make the decision easier.
Preventing side-channel attacks (i.e. timing attacks on MAC validation) and dangerous compiler optimizations with a blinded comparison.
If you ever wondered the best way to encrypt a username or row ID for an obfuscated URL in PHP, this is the article for you.
No matter what language you're developing in, there's really only one cryptography library that shines above the rest.
A human-readable overview of commonly misused cryptography terms and fundamental concepts.
Alternative title: "Libmcrypt considered harmful." You should use libsodium if you can, or OpenSSL if you can't.
A developer's short guide to encryption, authentication, and authenticated encryption with examples in PHP
Login forms with a remember me checkbox are a common requirement. We explore the security of login forms and a robust model for remember me checkboxes.
Will tomorrow bring costly and embarrassing data breaches? Or will it bring growth, success, and peace of mind?
Our team of technology consultants have extensive knowledge and experience with application security and web/application development.
Want the latest from Paragon Initiative Enterprises delivered straight to your inbox? We have two newsletters to choose from.
The first mails quarterly and often showcases our behind-the-scenes projects.
The other is unscheduled and gives you a direct feed into the findings of our open source security research initiatives.