What is the best practice for choosing what goes into the hash?
Some ideas are:
- First name and last name of recipient
- First name, last name, year of issuing, name of the certificate
- First name, last name, year of issuing, name of the certificate, first 3 letters of passport of some id
- First name, last name, year of issuing, name of the certificate, the entire passport ID
Which of the above 4 or if any is good for a school certificate system?
Here’s my understanding and please let me know if it’s right:
The more information that goes into the hash, it should be more convincing to proof that the information on the certificate has not been changed. On the other hand, people would feel that it is less secure since some people would think that there’s a super slight chance to brute force and find out what’s in the hash (although I personally think it’s close to impossible). I am not sure if I understand this right. Please let me know what you think.
It would be nice if someone can share some insights. Thanks.