Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

What is the preferred way of comparing hmac signatures in Node?

Tags:

node.js

cryptography

hmac

I've read that doing a string comparison is not the preferred way to determine if hmac signatures match. (Go to Step 5) So, in Node, given something like this

const hmac = crypto.createHmac("sha256", signingSecret).update(buf, encoding);
const computed = `${version}=${hmac.digest('hex')}`;

if(computed !== req.header("signature")){
   throw
}

If not for string comparison, what is the preferred way of doing this line: computed !== req.header("signature")?

like image 626
Newtang Avatar asked Jul 23 '18 20:07

Newtang

People also ask

How do I validate my HMAC signature?

After receiving the message, your app should verify the HMAC signature by attempting to re-create one or both of the signatures by hashing the raw message body with one or both of the app's HMAC keys. To verify the signatures: Extract the text of the UTF-8 payload as an array of bytes.

What is cryptography in node JS?

Crypto is a module in Node. js which deals with an algorithm that performs data encryption and decryption. This is used for security purpose like user authentication where storing the password in Database in the encrypted form. Crypto module provides set of classes like hash, HMAC, cipher, decipher, sign, and verify.

What is hash in node JS?

The hash. digest( ) method is an inbuilt function of the crypto module's Hash class. This is used to create the digest of the data which is passed when creating the hash. For example, when we create a hash we first create an instance of Hash using crypto.

1 Answers

The reason why an ordinary string comparison is not preferred is that it will typically return a result as soon as it finds a difference between the two strings. This can open the door to a timing-based attack; if I'm trying to guess the correct HMAC for a message and my guess differs from the real string in its first character, I'll get a "fail" response more quickly than if the difference is in the second, third, fourth ... character. Yes, the time difference is tiny, but it really can be measurable.

The preferred technique is to use what's called a "constant-time comparison" function. This kind of function is designed to consume the same amount of time regardless of the position where the arguments differ. By not returning as soon as it finds a mismatch, it gives an attacker no information about the position of the mismatch.

In Node the appropriate function is crypto.timingSafeEqual(a,b).

like image 198
ottomeister Avatar answered Sep 22 '22 13:09

ottomeister
Sign in to Comment

Related questions

TypeError: Cannot read property 'client_secret' of undefined
Writing to ~/Documents folder in Node.js on macOS?
how to listen on any port on heroku when a web port 80 is already in use?
router-view content not rendering
Express, diff between route.use() ,route.all(),route.route()
Mongoose, express- create schema with array of objects
what does "an empty MaybeLocal" mean?
Run Puppeteer with Tor
Register User Through Passport Js
Socket.io keeps connecting repeatedly and ignores other events
Cannot find module 'hbs', express-handlebars
Sequelize: find latest record per group of id
Accessing a MongoDB Atlas Cluster from within Google Cloud Functions Console
Wrong localisation in Firebase Cloud Function
socket.on event gets triggered multiple times
Debug jasmine tests written in typescript node in vs code
Using Node.js addons in Electron's renderer with Webpack
how to open non default browsers when doing npm start for a react project
How run in same port Angular and Node.JS Express?
How to resolve eslint "Generic Object Injection Sink" error?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!