Real-world Cryptography - -bookrar- _best_ -

While (now often operating under mirror domains after legal pressures) provides easy access, it occupies a grey area. Most files on such platforms are uploaded without the publisher’s (Manning Publications) or author’s consent. If you find the book valuable, consider buying a legal copy or accessing it via a subscription service (like O’Reilly Safari or Manning’s own liveBook platform) to support future editions and authors like David Wong.

| Mistake | Why it’s bad | Right way | |---------|--------------|------------| | Using ECB mode | Leaks patterns | GCM, ChaCha20-Poly1305 | | Custom password hashing (e.g., md5+salt) | Too fast, no salt iteration | Argon2 or scrypt | | Not authenticating ciphertext | Padding oracles, bit flipping | AEAD (GCM / ChaCha20-Poly1305) | | Reusing nonce with same key | Total loss of confidentiality | Deterministic nonce (counter) or random 96‑bit | | == on MACs / signatures | Timing attack | hmac.compare_digest | | RSA without padding (textbook RSA) | Deterministic + malleable | OAEP or use hybrid encryption | Real-World Cryptography - -BookRAR-