This repository was archived by the owner on Aug 1, 2023. It is now read-only.
Remove aes256 dependency? #96
Description
Symmetric encryption is used in generic invites using aes256.
aes256 encryption uses CTR mode, while the blockstack encryption is using CBC mode in encryptECIS. Does it make sense to have two different encryption methods? For maintenance reasons, it would be better to just have one.
The security of both modes are for example discussed in https://security.stackexchange.com/questions/27776/block-chaining-modes-to-avoid/27780#27780