Dan Draper
Dan Draper
I've just started using this lib and came across this issue. Please do not use a fixed IV with AES. While there are some very specific cases that it will...
> @coderdan thanks for the insight. Are you recommending we use randomly generated IVs? IVs must _never_ repeat. If the same message is encrypted more than once with the same...
With CBC it is _less_ bad, yes. Still a fixed IV will result in deterministic encryption and potential chosen plaintext attacks. Allowing the IV to be an async function would...