[@sounisi5011/encrypted-archive
] Disallow weak Argon2 options
#434
Labels
enhancement
New feature or request
Hashes generated with the weak Argon2 option are vulnerable to attack.
For this reason, node-argon2 changed the minimum values of timeCost and memoryCost.
see ranisalt/node-argon2#303
@sounisi5011/encrypted-archive
should also prohibit weak options for new encryption.Note: This limit should not be introduced for decryption. If the new limit is requested during decryption, decryption of the old archive will fail and backward compatibility will be lost.
The text was updated successfully, but these errors were encountered: