CRYPTO NEWS

Bulls target $100 Filecoin (FIL) after data points to improving fundamentals

FIL might be more than 70% away from its all-time high, but derivatives data shows traders are steadily building leveraged positions.

Storing 4 char prefix for 32bit hex token after storing HMAC digest

Currently I am working on a public api that uses token authentication. The token is a 32 bit random hex that is shared with the user and then stored in our database as an HMAC digest using a secret key. The token is not stored except for the first 4 characters. My question is, is::Listen

Currently I am working on a public api that uses token authentication. The token is a 32 bit random hex that is shared with the user and then stored in our database as an HMAC digest using a secret key. The token is not stored except for the first 4 characters.

My question is, is it safe to store the prefix like this?

My intuition tells me that it is not safe as it gives any attacker the beginning of the correct answer which therefore shortens the process of trying to brute force our secret key. I am wondering what someone with more expertise than I have thinks about this.

enter image description here

Thank you in advance.

Bulls target $100 Filecoin (FIL) after data points to improving fundamentals

Shopping cart
There are no products in the cart!
Continue shopping
0