this post was submitted on 10 Aug 2023

555 points (97.9% liked)

Programmer Humor

19551 readers

1044 users here now

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

Keep content in english
No advertisements
Posts must be related to programming or programmer topics

founded 1 year ago

MODERATORS

Feyter@programming.dev

anzo@programming.dev

BurningTurtle@programming.dev

pylapp@programming.dev

555

Order (programming.dev)

submitted 1 year ago by danhab99@programming.dev to c/programmer_humor@programming.dev

47 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] koper@feddit.nl 24 points 1 year ago (2 children)

The real question is do you encrypt-and-sign or sign-and-encrypt?

[–] Eufalconimorph@discuss.tchncs.de 32 points 1 year ago

Encrypt then sign. Always authenticate before any other operations like decryption. Don't violate the cryptographic doom principle.

[–] tvbusy@lemmy.dbzer0.com 30 points 1 year ago

Encrypt then sign. Verification is often much faster than (or at worst as fast as) decryption. Signature can also be verified without decryption key, making it possible to verify the data along the way.