Should use padding for RSA encryption #21
Assignees
Comments
ghost
assigned 
|
Would adding padding complicate serializing RSAPublicKey? |
|
No, I think it will only affect the encrypted data, not the key itself. On Tue, Mar 12, 2013 at 1:12 PM, Kieran Donegan [email protected]:
Ian Clarke |
|
Needs some additional research, hold off on this one |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
https://github.com/sanity/tahrir/blob/master/src/main/java/tahrir/io/crypto/TrCrypto.java
RSA/None/NoPadding can only be used securely if no padding is required:
If if the size of the plaintext is a multiple of the block-size... In
encrypt() it is... but not in encryptRaw() ! In any case, you might want
to either have padding OR to introduce a check ;)
OAEP is state of the art; something like
"RSA/None/OAEPWithSHA512AndMGF1Padding" would work nicely.
The text was updated successfully, but these errors were encountered: