CBC ciphertext not authenticated, making the system insecure

Question

leonklingele opened this issue 7 years ago · comments

It looks like you're using unauthenticated AES-CBC. This scheme is vulnerable to bit flipping attacks.

Either authenticate the ciphertext in Encrypt-Then-MAC fashion or switch to using a AEAD cipher like AES-GCM: https://github.com/gtank/cryptopasta/blob/master/encrypt.go

Artem Andreenko · Answer 1 · Tue Sep 18 2018 14:45:29 GMT+0800 (China Standard Time)

New version 2.0 released with AES-256-GCM.