← Cybersecurity Alphabet Soup

HMAC

Hash-based Message Authentication Code

cryptomedium

HMAC builds a message authentication code from any cryptographic hash function combined with a secret key. It verifies both the integrity and the authenticity of a message, and its nested construction defends against length-extension attacks on plain hashes. It is used everywhere from TLS and IPsec to API request signing and JWT tokens.

Sources

More in crypto