HMAC GENERATOR

HMAC (Hash-based Message Authentication Code) is a mechanism for calculating a message authentication code involving a cryptographic hash function in combination with a secret key.

Use Cases:

• API authentication and request signing
• Verifying message integrity
• Secure password storage (combined with salt)
• JWT token signing
• Webhook payload verification

Algorithms:

• HMAC-MD5: Legacy, avoid for new applications (128-bit output)
• HMAC-SHA1: Legacy, being phased out (160-bit output)
• HMAC-SHA256: Recommended for most use cases (256-bit output)
• HMAC-SHA512: Maximum security (512-bit output)
• HMAC-SHA3: Modern alternative to SHA-2 family

Security: HMAC provides both data integrity and authentication. The secret key must be kept secure and known only to authorized parties. Unlike simple hashing, HMAC cannot be computed without the secret key.