Encrypt then sign. Verification is often much faster than (or at worst as fast as) decryption. Signature can also be verified without decryption key, making it possible to verify the data along the way.
Comment on Order
koper@feddit.nl 10 months ago
The real question is do you encrypt-and-sign or sign-and-encrypt?
tvbusy@lemmy.dbzer0.com 10 months ago
Eufalconimorph@discuss.tchncs.de 10 months ago
Encrypt then sign. Always authenticate before any other operations like decryption. Don’t violate the cryptographic doom principle.