sling-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Antonio Sanso (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (SLING-7255) Donating Sling Resource Encryption Utils
Date Mon, 20 Nov 2017 15:12:00 GMT

    [ https://issues.apache.org/jira/browse/SLING-7255?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16259339#comment-16259339
] 

Antonio Sanso commented on SLING-7255:
--------------------------------------

[~jebailey] thanks for your donation.

Without going to deep into the API layer (other people might comments on it), IMHO would be
best to use some way of authenticated encryption rather than AES/CBC. 

As rule of thumbs you never (only) encrypt . You'd better add some integrity check mechanism
(eg AES GCM or encrypt-then-mac)

> Donating Sling Resource Encryption Utils
> ----------------------------------------
>
>                 Key: SLING-7255
>                 URL: https://issues.apache.org/jira/browse/SLING-7255
>             Project: Sling
>          Issue Type: Task
>            Reporter: Jason E Bailey
>         Attachments: sling-encrypt-0.0.1-beta.zip
>
>
> Issue to track donation of Sling resource encryption
> Codebase
> https://github.com/JEBailey/sling-encrypt
> source code is attached with sha1 checksum of 717e84c0ec45191d14d93cebbe8795961b393610



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

Mime
View raw message