[
https://issues.apache.org/jira/browse/SLING-7255?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16259339#comment-16259339
]
Antonio Sanso commented on SLING-7255:
--------------------------------------
[~jebailey] thanks for your donation.
Without going to deep into the API layer (other people might comments on it),
IMHO would be best to use some way of authenticated encryption rather than
AES/CBC.
As rule of thumbs you never (only) encrypt . You'd better add some integrity
check mechanism (eg AES GCM or encrypt-then-mac)
> Donating Sling Resource Encryption Utils
> ----------------------------------------
>
> Key: SLING-7255
> URL: https://issues.apache.org/jira/browse/SLING-7255
> Project: Sling
> Issue Type: Task
> Reporter: Jason E Bailey
> Attachments: sling-encrypt-0.0.1-beta.zip
>
>
> Issue to track donation of Sling resource encryption
> Codebase
> https://github.com/JEBailey/sling-encrypt
> source code is attached with sha1 checksum of
> 717e84c0ec45191d14d93cebbe8795961b393610
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)
