See here:
|
string InitialVector = "OFRna73m*aze01xY", |
...
public byte[] Encrypt(byte[] Data, string Key,
string Algorithm,
string Salt = "Kosher",
string HashAlgorithm = "SHA1",
int PasswordIterations = 2,
string InitialVector = "OFRna73m*aze01xY",
int KeySize = 256)
{
...
The use of a default initialzation vector is a security flaw - see here for a breakdown of why this is a bad idea, that document goes into detail for how IVs should be handled for CBC mode, so I won't repeat it all here.
To protect the integrity of encrypted data, this default IV should not be used.
See here:
Craig-s-Utility-Library/Utilities/IO/Encryption/Manager.cs
Line 213 in 34c4241
The use of a default initialzation vector is a security flaw - see here for a breakdown of why this is a bad idea, that document goes into detail for how IVs should be handled for CBC mode, so I won't repeat it all here.
To protect the integrity of encrypted data, this default IV should not be used.