|
|
|
|
|
|
by st_goliath
1244 days ago
|
|
|
> ... neither inventing their own algorithms nor implementing existing algorithms ... Even if you just cobble together existing primitives from battle tested libraries, if you don't fully grasp their properties or interactions, you can still shoot yourself in the foot pretty heftily. Particularly, encrypting data at rest is an entirely different beast on it's own. Personally, I don't really like blindly praying that old "don't roll your own crypto" mantra for this exact reason. It means so much more than "don't implement crypto primitives from scratch" which people seem to often interpret it as, but is IMO really poorly/vaguely phrased to convey that. |
|
|