Changes between Initial Version and Version 1 of Ticket #2100, comment 9
- Timestamp:
- 2015-12-14T22:21:14Z (9 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
Ticket #2100, comment 9
initial v1 3 3 > If we are going to encrypt the private aliases file shouldn't we also use a message authenticating code, perhaps an HMAC? 4 4 5 Yes, we should use authenticated encryption. Encrypt-then-HMAC is fine for that.5 Yes, we should use authenticated encryption. Encrypt-then-HMAC (e.g. AES-CTR then HMAC) is fine for that.