I looked up the code which I used recently related to AES.
We used the GCM block mode (as it is the most secure and fast, non-stream
based AES encryption mode.)
Something like
* Cipher cipher = Cipher.getInstance("AES/GCM/NoPadding");*
*byte[] nonce = new byte[GCM_NONCE_LENGTH];*
*
Hey Rudy!
Thanks for your feedback!
A colleague who glimpsed over the code also catched the folder bug and
suggested to use SHA-256. I've upgraded this in my repo already.
I think it's time to push this to our cannonical repo, then you could simply
apply your changes. Ok?
txs and LieGrue,
[
https://issues.apache.org/jira/browse/DELTASPIKE-1250?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16009249#comment-16009249
]
ASF subversion and git services commented on DELTASPIKE-1250:
-
Commit
[
https://issues.apache.org/jira/browse/DELTASPIKE-1250?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16009248#comment-16009248
]
ASF subversion and git services commented on DELTASPIKE-1250:
-
Commit
Regarding the exception.
This is by design not the key used to encrypt but only it's hash (which is used
as key in the master.hash file). I dint want to print out the encryption key or
the password anywhere.
Otw any attack would be simple.
LieGrue,
Strub
> Am 13.05.2017 um 11:30 schrieb Rudy
[
https://issues.apache.org/jira/browse/DELTASPIKE-1243?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Gerhard Petracek closed DELTASPIKE-1243.
Resolution: Later
please reopen this ticket once there is an agreement on the