Generate Hash-based Message Authentication Codes
Use a strong, random secret key for security.
Enter a message and secret key to generate HMAC
HMAC (Hash-based Message Authentication Code) combines a cryptographic hash function with a secret key to provide both data integrity and authenticity.
Common Uses:
Security Note
All processing happens locally in your browser. Your secret key is never sent to any server.
| Algorithm | Output Size | Security | Use Case |
|---|---|---|---|
| HMAC-SHA1 | 160 bits | Legacy | Backward compatibility |
| HMAC-SHA256 | 256 bits | Strong | General purpose, JWT HS256 |
| HMAC-SHA384 | 384 bits | Strong | High security applications |
| HMAC-SHA512 | 512 bits | Strongest | Maximum security needs |
HMAC (Hash-based Message Authentication Code) combines a hash function with a secret key to provide both integrity verification and authentication. Unlike plain hashes, HMAC requires a key, making it ideal for API signing and webhook verification.