nmoinvaz
commented
7 years ago Looks like this is complicated by the fact that we seek around in the file during unzip. Every time we seeked we would have to start from the beginning and encrypt all the way to the point where we need to read.
This issue is about an idea to add an IO layer for whole file AES encryption. Doing it this way would make it a lot less complex than trying to encrypt the file metadata any other way. Central directory encryption isn't supported in most ZIP applications due to PKWARE's licensing restrictions. Making encryption an IO layer allows for easy configuration that is optional - similar to the IO layer for buffering.