Zero-Day
Zero-Day Vulnerability
A software vulnerability unknown to the vendor and without a patch, actively exploited before a fix is available.
技術的詳細
Zero-Day is a critical component of information security infrastructure. The Web Crypto API (crypto.subtle) provides browser-native implementations of cryptographic algorithms including AES-GCM, RSA-OAEP, ECDSA, and SHA family hash functions. All operations execute in constant-time to prevent timing attacks. Client-side security processing ensures sensitive data (passwords, keys, encrypted content) never leaves the user's device — a property that cannot be guaranteed by server-side alternatives.
例
```javascript
// Zero-Day — Web Crypto API example
const data = new TextEncoder().encode('sensitive data');
const hash = await crypto.subtle.digest('SHA-256', data);
const hex = Array.from(new Uint8Array(hash))
.map(b => b.toString(16).padStart(2, '0')).join('');
```
関連ツール
P
Password Generator
P
Password Strength Checker
H
Hash Generator
H
HMAC Generator
A
AES Encrypt / Decrypt
R
Random String Generator
C
CSP Header Generator
T
Text Redactor
C
CORS Header Generator
S
SRI Hash Generator
B
Base64 Encoder / Decoder
J
JWT Decoder
U
UUID Generator
T
TOTP Configurator
S
SSL Certificate Decoder