~128 bits worth of obscurity is considered real security for the time being. Ass... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		kubanczyk on June 5, 2024 \| parent \| context \| favorite \| on: You'll regret using natural keys ~128 bits worth of obscurity is considered real security for the time being. Assuming a cryptographically secure PRNG. Thats like guessing a password 18 ASCII chars long.

selcuka on June 5, 2024 [–]

> ~128 bits worth of obscurity is considered real security for the time being.

Sure, what I meant was UUIDs are not supposed to be confidential information, unlike passwords. They are exposed in URLs and whatnot.

Consider applying for YC's Winter 2026 batch! Applications are open till Nov 10
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact