Here is the text of the NIST sp800-63b Digital Identity Guidelines.

  • General_Effort@lemmy.world
    link
    fedilink
    English
    arrow-up
    1
    ·
    1 month ago

    If the same user can generate the same input, it will result in the same hash.

    Yes, if. I don’t know if you can guarantee that. It’s all fun and games as long as you’re doing English. In other languages, you get characters that can be encoded in more than 1 way. User at home has a localized keyboard with a dedicated key for such a character. User travels across the border and has a different language keyboard and uses a different way to create the character. Euro problems.

    https://en.wikipedia.org/wiki/Unicode_equivalence

    Byte length of the character is irrelevant as long as you’re not doing something ridiculous like intentionally parsing your input in binary and blithely assuming that every character must be 8 bits in length.

    There is always some son-of-a-bitch who doesn’t get the word.

    • John F. Kennedy