37,203 questions
1
vote
1
answer
60
views
Symmetric Encryption Padding Issues AES/PKCS*7/CBC [duplicate]
I am unable to determine what is causing the exception being thrown ("invalid padding bytes"). From trying to find examples of the same issue, this seems to mostly be using the incorrect key ...
1
vote
0
answers
36
views
RSA based certs failing during TLS after removal of RSA-PSS ciphers from ClientSignatureAlgorithm
For FIPS mode, I added ClientSignatureAlgorithm in opensslcnf.txt. This change was done for FIPS mode using the crypto-policies package.
The support ciphers for ClientSignatureAlgorithms are same as ...
0
votes
0
answers
63
views
Restore MongoDB database having queryable encrypted fields [migrated]
Using mongodump and mongorestore with in-use encryption, I found out recently that restoring a Mongo database having queryable encrypted fields, regardless the version used (community or entreprise), ...
- 2,853
1
vote
0
answers
140
views
Is it possible to get non-zero length array with only-zeroes bytes during Aes encryption? [closed]
Several users have encountered strange issues with my app/game. They reported that their save files have become invalid. I've tried to investigate the problem and haven't found anything.
Here is a ...
0
votes
2
answers
151
views
Generating Key & Nonce Pairs from Web Crypto API vs from Word List. Is entropy the same?
I want to find out if the 2 methods shown below achieve the same level of entropy.
For this first secure method, a 32 byte / 256 bit key and a 12 byte / 96 bit nonce are generated using the JavaScript ...
- 5,004
1
vote
1
answer
62
views
c# client server certificate is not configured properly with HTTP.SYS in the HTTPS case - Server 2016
We are trying to make a soap request to a specific remote web service (https://example.com) from two server 2016 machines with c# client. Server A can get response. But server B can't. Server A and B ...
- 11
4
votes
2
answers
161
views
Why does Java's X22519 Lib works with some inputs but not others
I am using java built-in SunEC 21 security provider to do X25519 test cases and all work but one.
I am using the same logic for every test just different inputs.
When I use the inputs:
Public key: ...
- 31
0
votes
1
answer
125
views
In-place modification of large encrypted file
The server-side application I'm working on stores structured data in a single large file that is continuously encrypted using the ChaCha20 stream cipher. I want to modify parts of the file without ...
- 69
0
votes
1
answer
145
views
encrypt using OpenSSL and RSA_public_encrypt
I need to encrypt strings using a public key contained in an X509 certificate using Delphi 10.3 and OpenSSL. The certificate is already loaded in memory using the BIO routines:
var
ptrX509: pX509;
...
- 481
1
vote
1
answer
34
views
Tortoise ORM postgresql Encryption
I figured out how to decrypt fields
class _Decrypt(Function):
def __init__(self, term: Any, key, alias: str | None = None) -> None:
super().__init__("pgp_sym_decrypt", term, ...
- 11
1
vote
0
answers
103
views
Logic App Standard Inline C# action fails to decrypt AES CBC with PKCS7 (works in function app)
I’m trying to decrypt AES-encrypted data inside a Logic App Standard Inline C# action, but the code that works fine in a function app fails inside Logic Apps.
Problem
The AES key is stored in Azure ...
2
votes
1
answer
120
views
How can I securely encrypt spatial fields (GeoDjango / PostGIS) in Django?
I’m working on a Django project with GeoDjango models that store user location data (e.g., PointField, LineStringField). Because location data is highly sensitive, I want to ensure it’s secured (?...
- 33
-1
votes
1
answer
93
views
OpenSSL::Cipher::CipherError Rails 7 does not decrypt manually
I'm having some trouble to decrypt ciphertext that was added to my logs using Rails 7.1.5.1
I recently added the Rails Encryption and made the upgrade to Rails 7 and now I need to decrypt logs that I ...
0
votes
2
answers
81
views
mkinitcpio ERROR: Hook 'luks_unlock' cannot be found
I am trying to build a full-disk encryption scheme in ArchLinux. I found that GRUB cannot pass header parameters, so I think I need to write a custom hook script to guide the LUKS header and key file.
...
- 1
0
votes
0
answers
37
views
TLS Key Schedule is failing via Server_Handshake_traffic_secret
I am making a minimal TLS 1.3/HTTPS server in Java using only Sockets.
I have already created a ClientHello parser and a ServerHello. When testing with OpenSSL the ServerHello is accepted, but when ...
- 31