-
we are facing the problem in **RSA/ECB/OAEPWITHSHA-256ANDMGF1PADDING** encryption in node.js decryption in java.
below i can share my code in node:
```
var nodeForgeRsaEncryption = function (d…
-
I am creating a POC where I have created a public and private key pair. The private key is stored in KMS. The public key is stored in Secrets Manager. I am using the following code for envelope encryp…
-
Hello,
I'm using jsencrypt library to encrypt the messages in client and sending it to the server, though whenever I try to decode it, it always brings a 'Decryption error' message...
And when I enc…
-
### Is your feature request related to a problem?
TLSv1.2 is very vulnerable, especially this implementation because CBC RSA and SHA were statically programmed in.
Java supports TLS 1.3 even in bac…
-
### Proposal Details
It is currently impossible to independently choose the hash functions used by `rsa.EncryptOAEP` for OAEP and MGF1. The issue was already raised in #19974; however, it has only …
mmauv updated
1 month ago
-
# Environment
* OS / version: fedora35
* Processor architecture: x86_64
* TPM Manufacturer: swtpm
* Keylime version: keylime-upstream-version
# Description
When I use different encrypti…
-
The current configuration of nginx is obsolete and need to be reviewed to reduce attack surface.
## Steps to Reproduce
Use overleaf with nginx proxy
Use https://testssl.sh for testing
## Ex…
-
`mbedtls_rsa_rsaes_oaep_encrypt` and `mbedtls_rsa_rsaes_pkcs1_v15_encrypt` error out if `input` is null. But if `ilen` is zero, this is valid. Encrypting a zero-length string is a corner case that isn…
-
Our tls server used to be in the untrusted world, which is why we had to asymmetrically encrypt the request for encryption. However, now that the TLS server is inside the enclave, TLS encryption is en…
-
## Request Summary:
Quantum computers threaten to break traditional cryptography like RSA and ECC, making current encryption vulnerable. To protect data in the future, we need post-quantum encrypt…