You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This method doesn't include any type of authentication, to be secure, a MAC should be applied. This answer goes into some detail about what you should be doing here.
If you don't authenticate the ciphertext, an attacker can make simple changes to it, and when decrypted, will change the content of the encrypted message. So it's important to ensure the integrity of the message before decrypting it.
The text was updated successfully, but these errors were encountered:
See here: https://github.com/JaCraig/Craig-s-Utility-Library/blob/master/Utilities/IO/Encryption/BaseClasses/SymmetricBase.cs#L159
This method doesn't include any type of authentication, to be secure, a MAC should be applied. This answer goes into some detail about what you should be doing here.
If you don't authenticate the ciphertext, an attacker can make simple changes to it, and when decrypted, will change the content of the encrypted message. So it's important to ensure the integrity of the message before decrypting it.
The text was updated successfully, but these errors were encountered: