Anlage 16 sets AES256_CBC as "standard". Although it's unclear to me whether this should regarded as the only legal algorithm. In any case the receiver should somehow verify that the message was encrypted using a secure algorithm and not ... "advanced ROT13".
Possible fix for #41
Sorry for the insane amount of test code, you might want to refactor it (I needed to create a "SECON tool" with deprecated encryption algorithms, the main classes being final prohibited sub-classes - there might be way better solutions for testing)
Anlage 16 sets AES256_CBC as "standard". Although it's unclear to me whether this should regarded as the only legal algorithm. In any case the receiver should somehow verify that the message was encrypted using a secure algorithm and not ... "advanced ROT13".
Possible fix for #41
Sorry for the insane amount of test code, you might want to refactor it (I needed to create a "SECON tool" with deprecated encryption algorithms, the main classes being final prohibited sub-classes - there might be way better solutions for testing)