Jump to content

You're browsing the 2004-2023 VATSIM Forums archive. All content is preserved in a read-only fashion.
For the latest forum posts, please visit https://forum.vatsim.net.

Need to find something? Use the Google search below.
PLEASE READ - Webmaster Support Forum
This forum will be retired in the near future. Please direct all queries to our dedicated GitHub support page https://github.com/vatsimnetwork/developer-info/discussions 
Here you can find documentation on our services and we are continuing to migrate pertinent information into the Wiki pages https://github.com/vatsimnetwork/developer-info/wiki

Implementing modern signing/encryption protocols for SSO

Julian DeMille 1360676

By Julian DeMille 1360676,
in SSO

 Share

Recommended Posts

Julian DeMille 1360676

Julian DeMille 1360676

Posted
Posted

Due to the SHAttered attack, I think the VATSIM SSO should implement newer algorithms for signatures. SHA256 and/or SHA512 should do it. It would also be nice to see an implementation of ECDSA too.

Link to comment
Share on other sites
Julian DeMille 1360676

Julian DeMille 1360676

Posted
  • Author
Posted

Disregard the ECDSA since it isn't implemented in most OAuth1 implementations.

Link to comment
Share on other sites
  • 3 months later...
Luis Henrique

Luis Henrique

Posted
Posted

Any news? It's possible to implement another sign/encryption proto for oauth 1.0a? What about oauth 2.0?

Just a random simmer...

Link to comment
Share on other sites
 Share
Go to topic listing