"aes-js and pyaes provide a default IV in their AES-CTR API"
-
"aes-js and pyaes provide a default IV in their AES-CTR API"
*screams*
Carelessness versus craftsmanship in cryptography
Two popular AES libraries (aes-js and pyaes) provide dangerous default IVs that lead to key/IV reuse vulnerabilities affecting thousands of projects. One maintainer dismissed the issue, while strongSwan's maintainer exemplified proper security response by comprehensively fixing the vulnerability in their VPN management tool.
The Trail of Bits Blog (blog.trailofbits.com)
-
"aes-js and pyaes provide a default IV in their AES-CTR API"
*screams*
Carelessness versus craftsmanship in cryptography
Two popular AES libraries (aes-js and pyaes) provide dangerous default IVs that lead to key/IV reuse vulnerabilities affecting thousands of projects. One maintainer dismissed the issue, while strongSwan's maintainer exemplified proper security response by comprehensively fixing the vulnerability in their VPN management tool.
The Trail of Bits Blog (blog.trailofbits.com)
@philpem there is literally no use case in which that is the right thing to do
-
R relay@relay.infosec.exchange shared this topic
