hop icon indicating copy to clipboard operation
hop copied to clipboard
verified publisher icon apache

[Task]: Change AES Algorithm on AesTwoWayPasswordEncoder

Open hansva opened this issue 2 years ago • 1 comments

What needs to happen?

Currently we are using following AES algorithm: AES/ECB/PKCS5Padding This mode has been deemed unsafe and needs to be upgraded to use a better algorithm.

Changing this would be a breaking change for people currently using the AES strings in their configuration so clear communication will be needed

Issue Priority

Priority: 2

Issue Component

Component: Other

hansva avatar Sep 28 '23 12:09 hansva

It's perhaps better to create a new plugin AES2 or something like that. Leave deprecation warnings in the logging when using the old plugin.

mattcasters avatar Nov 14 '23 20:11 mattcasters

.take-issue

hansva avatar Oct 09 '24 08:10 hansva

Added a new AES2 type and deprecated the old one.

hansva avatar Oct 09 '24 09:10 hansva