Academic Integrity: tutoring, explanations, and feedback — we don’t complete graded work or submit on a student’s behalf.

Background When making web applications you sometimes need to pass data along wi

ID: 653009 • Letter: B

Question


Background

When making web applications you sometimes need to pass data along with the form which isn't visible to the user. Database IDs are the most common, but texts and IDs are sometimes necessary too. For this reason there is a <hidden> field in HTML, but it has a drawback - any hacker with a basic understanding of what he is doing can modify the value. It would be better if such values would be tamper-protected, if not outright encrypted.
Question

I need to pass a value through hostile territory. The value is most often an integer (and that most often less than 65'000, so mostly just two non-zero bytes, rarely three, almost never 4). However sometimes the value can also be a string (short, a few hundred characters at most). I'm OK with using different algorithms for different kinds of data.

I want to tamper-protect the value, so that it cannot be changed en-route without detecting. Hiding the data isn't necessary, but doing so would be a bonus. So either tamper-protection or encryption would work.

Whatever the algorithm, I want to have the output as short as possible without sacrificing too much of security. This is because it's a webpage and shorter data means faster response times. Also, the HTML code becomes easier to read if there aren't lengthy random strings in it.

What algorithms would you suggest for this purpose?

Explanation / Answer

You are writing out data and reading it back on the same server. You want to ensure that the data that you read back is the same as the data that was written out.

For this use case, symmetric cryptography seems appropriate. Have a single symmetric key that doesn't leave the server. You need to rotate the key only if the server is compromised; this will invalidate sessions in progress, which is likely to happen for other reasons in case of a server compromise as well.

You can take add an HMAC checksum of the data; with HMAC-SHA-256 (a strong, recommended choice), this adds 64 bytes if you encode the checksum in hexadecimal or 44 if you encode it in base64 (or 32 if you include it in binary form but that tends to be hard to parse). There'll probably be a few more bytes' overhead to put the string somewhere. Given the context

Related Questions

Background Information: Is the weight of adult airline passengers (person plus c
Question #3203329
Background Information: Our WAR game variation: There are two players playing th
Question #3602336
Background Information: Our WAR game variation: There are two players playing th
Question #3603894
Background Information: The study for this discussion was performed during the e
Question #89678
Background Information: Transactions Units Unit Cost Beginning inventory, Januar
Question #2434967
Background Information: Use the following Yahoo financial statements to complete
Question #2733060
Background LGE is one of the leading global companies in the industry. It is com
Question #419077
Background Last year, I was asked to create a tool to be used for business plann
Question #645953

Navigate

Previous
Background When it is possible to achieve, randomization is critical to experime
Next
Background XYZ Co. is a hypothetical small credit card processing company that h

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.