GCM is not supported for CMS enveloped data. Attempting to use it now returns
an error.
Steve.
--
Dr Stephen N. Henson. OpenSSL project core developer.
Commercial tech support now available see: http://www.openssl.org
___
openssl-dev mailing list
To uns
On Fri, Jul 31, 2015 at 05:35:51PM +, Laetitia Baudoin via RT wrote:
> When encrypting using the 'openssl cms -encrypt -aes-256-gcm' command an
> all zero IV is used, this breaks any guarantees provided by the GCM
> mode (see NIST Special Publication 800-38D).
>
https://mta.openssl.org/p
When encrypting using the 'openssl cms -encrypt -aes-256-gcm' command an
all zero IV is used, this breaks any guarantees provided by the GCM
mode (see NIST Special Publication 800-38D).
Version tested: openssl 1.0.2d on linux x86_64.
Example:
openssl cms -encrypt -in message.txt -out encrypted-op