-
The integrity of ciphertexts is not authenticated with a MAC, leaving them malleable and vulnerable to chosen ciphertext attacks.
Ciphertexts should ideally be authenticated using an AEAD mode (i.e. …
-
# Release Plan - v0.3.0
The primary goal of this release is to add support for JSON Web Encryption (JWE). See [RFC 7516](https://datatracker.ietf.org/doc/html/rfc7516) for more information.
## T…
-
Right now the SecureDataManager is using AES in CBC mode to protect the master key derived from the PIN and sensitive object attributes. The problem with this approach is that there is no way to guara…
-
So, I like crypto that's hard(-er, there's still nonce related foot+gun oportunities) to misuse. djb et al's NaCl library provides nifty `crypto_box`/`crypto_secretbox` for doing authenticated encryp…
-
### This issue is unique.
- [X] I have used the [search tool](https://github.com/ONLYOFFICE/DesktopEditors/issues?q=) and did not find an issue describing my idea.
### Your idea.
On the incoming Li…
-
I've made some performance tests with Botan and OpenSSL and cannot quite explain the results:
Device under Test
- OpenSuse Leap 42.2 Linux, Skylake@4GHz, 64 GByte RAM
- Compiler gcc 6.3.0 (only g…
-
# [RFC] Use libsodium instead of OpenSSL
## Summary
This RFC conceptualise the implementation and migration of libsodium instead of OpenSSL to power transcrypt.
It will increase security and us…
-
Hi,
currently my AC500 is not available anymore via Bluetooth. Since I am away on vacation I could not check locally what is the cause but since it is still available remotely via app I checked if th…
-
Add encryption with user-managed keys.
This should encompass:
* data blocks (to hide file contents)
* indexes (to hide file names and other metadata)
* block dir names (so an observer cannot t…
-
**Is your feature request related to a problem? Please describe.**
The current algorithms available to securecookie are susceptible to [nonce-reuse](https://github.com/miscreant/meta/wiki/Nonce-Reu…