Mastodon Feed
nadim@infosec.exchange ("Nadim Kobeissi") wrote:
3/ The audit found nonce-key reuse in AES-CTR within Nym gateways. With a zero nonce, attackers could decrypt communications with simple XOR operations! We recommended a switch to AES-GCM-SIV for better security.
