|
|
|
|
|
|
by 35fbe7d3d5b9
1859 days ago
|
|
|
Separating UX and "security" from a cryptosystem is impossible. Poor UX leads directly to security vulnerabilities. Heck, we've seen that in library code: your AES implementation may be sound, but if the library interfaces make it easy to reuse an IV, or use a null IV[1], you have a broken cryptosystem. [1]: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-5408 |
|
|