change default intermediate hash from SHA-1 to SHA-512

Note that HMAC is still secure even with MD5. This is mostly a change for aesthetics so people will stop asking, although it doesn't hurt to be preemtive in this case. Skipping SHA-256 for SHA-512 since it's more efficient on 64-bit. See https://mail.python.org/pipermail/cryptography-dev/2017-March/000737.html for discussion.
pallets · Mar 16, 2017 · 9f73bc2 · 9f73bc2
1 parent 220c38e
commit 9f73bc2
Showing 1 changed file with 14 additions and 8 deletions.
diff --git a/itsdangerous.py b/itsdangerous.py
@@ -260,9 +260,12 @@ def get_signature(self, key, value):
 class HMACAlgorithm(SigningAlgorithm):
     """This class provides signature generation using HMACs."""
 
-    #: The digest method to use with the MAC algorithm.  This defaults to sha1
-    #: but can be changed for any other function in the hashlib module.
-    default_digest_method = staticmethod(hashlib.sha1)
+    #: The digest method to use with the MAC algorithm.  This defaults to
+    #: SHA-512, but can be changed to any other function in the hashlib module.
+    #:
+    #: .. versionchanged:: 1.0
+    #:    The default was changed from SHA-1 to SHA-512.
+    default_digest_method = staticmethod(hashlib.sha512)
 
     def __init__(self, digest_method=None):
         if digest_method is None:
@@ -295,11 +298,14 @@ class constructor.
         `algorithm` was added as an argument to the class constructor.
     """
 
-    #: The digest method to use for the signer.  This defaults to sha1 but can
-    #: be changed for any other function in the hashlib module.
+    #: The digest method to use for the signer.  This defaults to SHA-512 but
+    #: can be changed to any other function in the hashlib module.
+    #:
+    #: .. versionchanged:: 1.0
+    #:    The default was changed from SHA-1 to SHA-512.
     #:
-    #: .. versionchanged:: 0.14
-    default_digest_method = staticmethod(hashlib.sha1)
+    #: .. versionadded:: 0.14
+    default_digest_method = staticmethod(hashlib.sha512)
 
     #: Controls how the key is derived.  The default is Django style
     #: concatenation.  Possible values are ``concat``, ``django-concat``
@@ -680,7 +686,7 @@ class JSONWebSignatureSerializer(Serializer):
     }
 
     #: The default algorithm to use for signature generation
-    default_algorithm = 'HS256'
+    default_algorithm = 'HS512'
 
     default_serializer = _CompactJSON