From 9b26cacf2ff6d3063dd6e8e33374904939a70b33 Mon Sep 17 00:00:00 2001 From: Robert Eggl Date: Fri, 18 Oct 2024 10:19:41 +0200 Subject: [PATCH] perf(encryption): update encryption method to AES-GCM (#424) --- rogue-thi-app/lib/credential-storage.js | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/rogue-thi-app/lib/credential-storage.js b/rogue-thi-app/lib/credential-storage.js index b546ab5a..7f59d3ac 100644 --- a/rogue-thi-app/lib/credential-storage.js +++ b/rogue-thi-app/lib/credential-storage.js @@ -53,17 +53,17 @@ export default class CredentialStorage { async write(id, data) { const key = await crypto.subtle.generateKey( { - name: 'AES-CBC', + name: 'AES-GCM', length: 256, }, false, ['encrypt', 'decrypt'] ) - const iv = crypto.getRandomValues(new Uint8Array(16)) + const iv = crypto.getRandomValues(new Uint8Array(12)) // AES-GCM typically uses a 12-byte IV const encrypted = await crypto.subtle.encrypt( { - name: 'AES-CBC', + name: 'AES-GCM', iv, }, key, @@ -94,7 +94,7 @@ export default class CredentialStorage { const decrypted = await crypto.subtle.decrypt( { - name: 'AES-CBC', + name: 'AES-GCM', iv, }, key,