-
PKCS1 padding is vulnerable to Bleichenbacher padding oracle attack. Both iOS and Android support PKCS1 OAEP with Sha1, which is the preferred padding in OpenSSL and the default padding in Node.js `cr…
-
Hello,
I like this native litte lib to use for RSA encryption but it lacks of support for OAEP (Optimal Asymmetric Encryption Padding) which is required to make it compatible with other suites like…
-
Seems like https://github.com/go-jose/go-jose/pull/78 removed this ability that existed in v3. Given that ParseSignedAndEncrypted() now requires specifying which algorithms are allowed, wouldn't this …
ptman updated
1 month ago
-
### Problem:
Currently the `aws-lc-rs` only supports JWS generation and validation, not JWE. While the `openssl` supports both, it would be nice to have that implementation for the `aws-lc` as well…
-
This encryption algorithm currently doesn't support OAEP Padding, so when the encrypted string is being decrypted with .NET's RSAServiceProvider, it gives Padding reading error.
Please provide a Bool…
-
### Proposal Details
It is currently impossible to independently choose the hash functions used by `rsa.EncryptOAEP` for OAEP and MGF1. The issue was already raised in #19974; however, it has only …
mmauv updated
2 hours ago
-
I'm trying to decrypt a JWE + JWS token and here is the first part of the token :
`eyJ6aXAiOiJERUYiLCJlbmMiOiJBMjU2Q0JDLUhTNTEyIiwiYWxnIjoiUlNBLU9BRVAtMjU2In0`
which after a base64ToString is gi…
-
### Problem Description
My Yubikey is personalized with a signature and an encryption certificate. Running `certutil -scinfo` shows that the encryption test cannot be performed, because certutil do…
-
version 5.0.1 can not find digest OAEP SHA256
-
version 5.0.1 can not find digest OAEP SHA256, can help to build new version for that ?