Sensitive Data Exposure
A vulnerability where applications fail to adequately protect sensitive data like passwords, tokens, or PII in transit or at rest.
तकनीकी विवरण
Sensitive Data Exposure is a critical component of information security infrastructure. The Web Crypto API (crypto.subtle) provides browser-native implementations of cryptographic algorithms including AES-GCM, RSA-OAEP, ECDSA, and SHA family hash functions. All operations execute in constant-time to prevent timing attacks. Client-side security processing ensures sensitive data (passwords, keys, encrypted content) never leaves the user's device — a property that cannot be guaranteed by server-side alternatives.
उदाहरण
```javascript
// Sensitive Data Exposure — Web Crypto API example
const data = new TextEncoder().encode('sensitive data');
const hash = await crypto.subtle.digest('SHA-256', data);
const hex = Array.from(new Uint8Array(hash))
.map(b => b.toString(16).padStart(2, '0')).join('');
```
संबंधित टूल्स
P
Password Generator
P
Password Strength Checker
H
Hash Generator
H
HMAC Generator
A
AES Encrypt / Decrypt
R
Random String Generator
C
CSP Header Generator
T
Text Redactor
C
CORS Header Generator
S
SRI Hash Generator
B
Base64 एन्कोडर / डिकोडर
J
JWT Decoder
U
UUID Generator
T
TOTP कॉन्फ़िगरेटर
S
SSL प्रमाणपत्र डिकोडर
D
Data URI Converter