Use of RSA Algorithm without OAEP
ID |
scala.cryptography.scala_crypto_rule_rsanopadding |
Severity |
low |
Resource |
Cryptography |
Language |
Scala |
Description
The software uses the RSA algorithm but does not incorporate Optimal Asymmetric Encryption Padding (OAEP), which might weaken the encryption.
Rationale
The software uses the RSA algorithm but does not incorporate Optimal Asymmetric Encryption Padding (OAEP), which might weaken the encryption.
Remediation
Follow secure coding practices and review the references below for detailed remediation guidance.
References
-
OWASP Top 10 2021 - A02 : Cryptographic Failures.