Our great sponsors
-
age
A simple, modern and secure encryption tool (and Go library) with small explicit keys, no config options, and UNIX-style composability.
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
Even if your use case has a decryption oracle, consider how age has dealt with this issue (https://github.com/FiloSottile/age/commit/2194f6962c8bb3bca8a55f313d5b9302596b593b -- got that link from the paper that the kryptor FAQ linked to).
If you look at the latest commits in libsodium-doc, then you'll see that Frank has now removed the padding fix suggestion, possibly due to me mentioning that in the Kryptor post (the timing matches anyway). His new recommendation is interesting, but he unfortunately doesn't cite any papers about the topic.
Related posts
- Has the encryption tool "age" been audited
- Help finding encryption workflow | Many users on an allowed list can view a single (Alice) users encrypted data. The single (Alice) user can add and remove users from the allowed list
- Text encryption software for encrypting notes
- Is there any BSD version Of GnuPG?
- Can I selfhost the fork of firefox send on AWS, or is that counterintuitive?