File tree Expand file tree Collapse file tree 1 file changed +9
-3
lines changed Expand file tree Collapse file tree 1 file changed +9
-3
lines changed Original file line number Diff line number Diff line change @@ -1019,9 +1019,14 @@ added: v15.0.0
10191019
10201020* Type: {ArrayBuffer|TypedArray|DataView|Buffer}
10211021
1022- The initialization vector must be unique for every encryption operation
1023- using a given key. The AES-GCM specification recommends that
1024- this contain at least 12 random bytes.
1022+ The initialization vector must be unique for every encryption operation using a
1023+ given key.
1024+
1025+ Ideally, this is a deterministic 12-byte value that is computed in such a way
1026+ that it is guaranteed to be unique across all invocations that use the same key.
1027+ Alternatively, the initialization vector may consist of at least 12
1028+ cryptographically random bytes. For more information on constructing
1029+ initialization vectors for AES-GCM, refer to Section 8 of [ NIST SP 800-38D] [ ] .
10251030
10261031#### ` aesGcmParams.name `
10271032
@@ -1923,5 +1928,6 @@ added: v15.0.0
19231928
19241929[ JSON Web Key ] : https://tools.ietf.org/html/rfc7517
19251930[ Key usages ] : #cryptokeyusages
1931+ [ NIST SP 800-38D ] : https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38d.pdf
19261932[ RFC 4122 ] : https://www.rfc-editor.org/rfc/rfc4122.txt
19271933[ Web Crypto API ] : https://www.w3.org/TR/WebCryptoAPI/
You can’t perform that action at this time.
0 commit comments