[feature request] - Using AES-GCM instead of CBC

Question

[feature request] - Using AES-GCM instead of CBC

Opened this issue 6 months ago · 1 comments

I was developing some small utility, I got this warning in the browser:

AES-CBC and AES-CTR do not provide authentication by default, 
and implementing it manually can result in minor, but serious mistakes. 
We recommended using authenticated encryption like AES-GCM to protect 
against chosen-ciphertext attacks.

Which makes sense, KDBX is used for storing data alongside secrets, GCM helps in checking if data is tampered or not. Should look into it

Answer 1 · 2024-11-10T17:27:43.000Z

I am assuming the project is dead