A typical encryption/decryption protocol should use both RSA-1024 and AES-256 for which to complete implemented it is hard to avoid flaws. Besides, to generate a qualified RSA-1024 pair key (with blacklist) is very computational expensive. For common usage, such as password authentication, HMAC is robust enough. Still, any secure form submitting should be SSL-encrypted other than using a javascript library.
2 comments
[ 2.9 ms ] story [ 9.7 ms ] thread