[exabrial]

Finally, read this: "If You’re Typing the Letters A-E-S Into Your Code You’re Doing It Wrong"

https://www.nccgroup.trust/us/about-us/newsroom-and-events/b...

[pilsetnieks]

Now that's a deep cut even for a Dan Harmon fan.

[aidenn0]

For anyone else wondering what the Dan Harmon reference was:

https://en.wikipedia.org/wiki/Heat_Vision_and_Jack

[bob1029]

What's wrong with using AES in CBC mode?

[exabrial]

See my original comment about attack surface. Given the correct set of circumstances, transmitting the IV in the clear with CBC could possibly open you up to chosen ciphertext/plaintext attacks. And you better be doing encrypt-then-prepend-IV-then-MAC with CBC. Just a lot of gotchas that may or may not be relevant, depending on your environment.