Encryptamajig
Encryptamajig copied to clipboard
jbubriski
A simple wrapper to the .NET AES encryption algorithm functionality.
Fix IV usage with appending it between the Salt and the Ciphertext AES 256 is being used
Hi John! I found your encryptor on Stack Exchange and thought I would fork it. I moved everything up two levels in the directory tree to make it easier to...
I believe that SecureString should be used when storing sensitive data in memory temporarily. We should probably use that, and require that the consumer of the API use that too.
Per jbtule's comment here: https://github.com/jbubriski/Encryptamajig/commit/c47aa782f9396488800591b5ccbeb415a5e7ca3c#src-encryptamajig-encryptamajig-aesencryptamajig-cs-P173 We should initialize the IV with a separate key derivation function than the key, and prepend the IV to the encrypted output. Then we need...
What are they exactly? Does it apply to AES in CBC mode? Is it difficult/complicated to implement?
Check out the code and see if AES 256 is being used. If it's not, let's enable that for stronger encryption by default. Make sure we update the Key/IV size...
Add a function to abstract the one way encryption (hashing) of data. Also add some verbiage to the XML docs that hashing is for passwords, and the symmetrical encryption methods...