CAUTION: Many of the default algorithms in this Toolkit (originally written 20 years ago) are no longer considered secure. You are recommended explicitly to use at least the following minimum-strength algorithms:
| Algorithm | Default | Minimum recommended | Option to use |
|---|---|---|---|
| Message digest | SHA-1 | SHA-256 | API_HASH_SHA256 |
| HMAC | HMAC-SHA-1 | HMAC-SHA-256 | API_HMAC_SHA256 |
| Symmetric encryption | Triple DES (TDEA) | AES-128/AES-128-GCM* | API_BC_AES128/API_AEAD_AES_128_GCM |
* Use the AEAD_EncryptWithTag function or
Aead.EncryptWithTag Method for AES-GCM.