Jump to content

You're browsing the 2004-2023 VATSIM Forums archive. All content is preserved in a read-only fashion.
For the latest forum posts, please visit https://forum.vatsim.net.

Need to find something? Use the Google search below.
PLEASE READ - Webmaster Support Forum
This forum will be retired in the near future. Please direct all queries to our dedicated GitHub support page https://github.com/vatsimnetwork/developer-info/discussions 
Here you can find documentation on our services and we are continuing to migrate pertinent information into the Wiki pages https://github.com/vatsimnetwork/developer-info/wiki

Implementing modern signing/encryption protocols for SSO


Julian DeMille 1360676
 Share

Recommended Posts

Julian DeMille 1360676
Posted
Posted

Due to the SHAttered attack, I think the VATSIM SSO should implement newer algorithms for signatures. SHA256 and/or SHA512 should do it. It would also be nice to see an implementation of ECDSA too.

Link to comment
Share on other sites

Julian DeMille 1360676
Posted
Posted

Disregard the ECDSA since it isn't implemented in most OAuth1 implementations.

Link to comment
Share on other sites

  • 3 months later...
Luis Henrique
Posted
Posted

Any news? It's possible to implement another sign/encryption proto for oauth 1.0a? What about oauth 2.0?

Just a random simmer...

Link to comment
Share on other sites

 Share