Formed in 2009, the Archive Team (not to be confused with the archive.org Archive-It Team) is a rogue archivist collective dedicated to saving copies of rapidly dying or deleted websites for the sake of history and digital heritage. The group is 100% composed of volunteers and interested parties, and has expanded into a large amount of related projects for saving online and digital history.
Join GitHub today
GitHub is home to over 50 million developers working together to host and review code, manage projects, and build software together.
Sign upHacktoberfest: Create a new Encryption Algorithm with AES GCM mode. #1600
Conversation
and others
added 5 commits
Oct 4, 2020
Create a new Encryption Algorithm with AES GCM mode.
Add redirect to new AES Algorithm
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Describe your change:
To perform secure encryption, the modes of operation and the fill scheme are essential and must be used correctly according to the encryption algorithm. Most of the available implementations use algorithms with Electronic Codebook (ECB) and this algorithm has vulnerabilities in the reliability of the generated messages that are known to the community.
This example encourages the use of a more complete encryption method than the standard ones.
For block cipher encryption algorithms (like AES), the GCM (Galois Counter Mode) mode, which works internally with zero / no padding scheme, is recommended. At the opposite, these modes and / or schemes are highly discouraged:
Electronic Codebook (ECB) mode is vulnerable because it doesn't provide serious message confidentiality: under a given key any given plaintext block always gets encrypted to the same ciphertext block.
Cipher Block Chaining (CBC) with PKCS # 5 padding (or PKCS # 7) is susceptible to padding oracle attacks. RSA encryption algorithm should be used with the recommended padding scheme (OAEP)
This issue is describe by SonnarLint in https://community.sonarsource.com/t/java-s5542-has-invalid-compliant-example/21683
References
Galois/Counter Mode - https://en.wikipedia.org/wiki/Galois/Counter_Mode
What's the difference between AES-CBC and AES-GCM? - https://www.privateinternetaccess.com/helpdesk/kb/articles/what-s-the-difference-between-aes-cbc-and-aes-gcm
Java AES/GCM/NoPadding - What is cipher.getIV() giving me? - https://stackoverflow.com/questions/31851612/java-aes-gcm-nopadding-what-is-cipher-getiv-giving-me
Checklist: