Certified: SANS GIAC GSEC Audio Course

This episode explains hashing as a tool for integrity and secure comparison, and it aligns to GSEC questions that probe whether you understand what hashes can and cannot do. You’ll define a digest as a fixed-length output derived from input data, then explain why hashes detect changes but do not provide confidentiality or identity by themselves. We’ll cover salts as a defense against precomputation and cross-user matching in password storage, and we’ll introduce HMAC as a keyed construction that provides integrity and authenticity when two parties share a secret. Scenarios include file integrity monitoring that detects unauthorized changes, a password database protected by hashing but still vulnerable due to weak algorithms or low work factors, and an API request that needs tamper resistance across untrusted networks. Best practices emphasize choosing modern algorithms, using HMAC for message integrity instead of bare hashes, protecting keys, and verifying that integrity checks are performed at the right points in the workflow. Troubleshooting centers on mismatches caused by encoding differences, canonicalization issues, and false confidence when teams confuse “hashed” with “secured.” Produced by BareMetalCyber.com, where you’ll find more cyber audio courses, books, and information to strengthen your educational path. Also, if you want to stay up to date with the latest news, visit DailyCyber.News for a newsletter you can use, and a daily podcast you can commute with.