I know the mantra is “don’t roll your own crypto”. What are the common pitfalls that people fall into when making their own cryptography programs? For example, why shouldn’t I use the Chacha program that I just wrote?

This page summarizes the projects mentioned and recommended in the original post on /r/crypto

Our great sponsors
  • WorkOS - The modern identity platform for B2B SaaS
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • SaaSHub - Software Alternatives and Reviews
  • CryptoGotchas

    A collection of common (interesting) cryptographic mistakes and learning resources.

    I present the list of Crypto Gotchas that I've seen in real world code. All of these mistakes have happily many times and broken systems. (They also generally assume that your underlying cryptography is properly built but you still get things wrong.)

  • WorkOS

    The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts