|
|
|
|
|
|
by kobeya
3299 days ago
|
|
|
> On 64-bit processors SHA-512 truncated to 256 bits is faster than SHA-256, and has the advantage of being safe against length-extension attacks (which are a major gotcha of SHA-512 and the rest of SHA2). Unless you are doing hash trees, in which case SHA-512 is slower than SHA-256, and length extension is not possible. Point is there isn't and shouldn't be a blanket solution. |
|
|