|
|
|
|
|
|
by mfbx9da4
387 days ago
|
|
|
> A shared secret removes the potential for detection from the service while asynchronous key signing does not. I would approximate that 95% of the time when a webhook sender discusses signatures they are referring to HMAC (symmetric-key signing). There is a clear benefit to asymmetric-key signatures but that's not the focus of this article. It's discussing the industry convention of using symmetric-key signing. |
|
|