Blake Eggleston created CASSANDRA-11809:
-------------------------------------------
Summary: IV misuse in commit log encryption
Key: CASSANDRA-11809
URL: https://issues.apache.org/jira/browse/CASSANDRA-11809
Project: Cassandra
Issue Type: Bug
Reporter: Blake Eggleston
Assignee: Jason Brown
Fix For: 3.7
Commit log segments share iv values between encrypted chunks. The cipher should
be reinitialized with a new iv for each discrete piece of data it encrypts,
otherwise it gives attackers something to compare between chunks of data. Also,
some cipher configurations don't support initialization vectors
('AES/ECB/NoPadding'), so some logic should be added to determine if the cipher
should be initialized with an iv.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
