Security update: change to HMAC
Posted on November 2009
We’ve received some suggestions via the comments on this blog and also from comments on Bruce Schneier’s blog to improve the security of norbt.
We have changed from Hashing to MAC‘ing. We have updated the security page to reflect the current implementation of norbt. You can find the previous content at security0.
A strong norbt starts with a strong answer. Remember to think about how easy it is for a person or a computer to guess your answer in order to determine how easy/difficult your norbt is.