dmke
commented
4 years ago Thanks for digging this out. I'll try to implement this.
Open mensi opened 4 years ago
dmke
commented
4 years ago Thanks for digging this out. I'll try to implement this.
The new encryption scheme is aes-gcm, 128bit block size, 128bit IV (the same IV as before). The 40 bytes long unencrypted header before the encrypted data is passed as AAD into GCM. The authentication tag is the last 128bits of the encrypted blob.