Using AES-CBC decrypt without padding from Stefan Ortner on 2014-06-21 (public-webcrypto-comments@w3.org from June 2014)

From: Stefan Ortner <Stefan.Ortner@sophos.com>
Date: Sat, 21 Jun 2014 05:50:12 +0000
To: "public-webcrypto-comments@w3.org" <public-webcrypto-comments@w3.org>
Message-ID: <E2C80A64135BA547960F05C2959D0F14651329E4@de-wie-exch3a.green.sophos>

There should be an option in AES-CBC to allow decryption without enforcing the padding scheme used in encrypt().
It is quite common when encrypting larger files to portion it into smaller chunks that are a multiple of AES block length, and saving all the padding blocks can produce quite some overhead and is therefore discarded.
Since AES-CBC is quite popular, there is already a lot of encrypted data out there that can simply not be decrypted when using WebCrypto API, because of the missing padding, or “wrong” padding in the data. So by allowing decryption without enforcing the padding, programmers can manually handle the padding themselves, if it differs from the padding used WebCrypto AES-CBC encrypt().

Regards,
Stefan

________________________________

Sophos GmbH, Leonfeldnerstraẞe 2, 4040 Linz, Österreich
Firmenbuchnummer: FN 387465 b, Ust.-ID Nr. ATU 65950312 Sitz: Wiesbaden, Deutschland
Firmenbuchgericht: Wiesbaden, Deutschland

Received on Monday, 23 June 2014 09:49:34 UTC