A part of our team has had to extend our website to try to communicate user credentials for a suppliers website. We're using a 256-bit key but they're using a static IV for decrypting the information.
We've advised them not to use static because it's an a security risk. But we want to know how big of a security risk is it? Does anyone have any information? Thanks!
November 26, 2013 6:25 PM
November 26, 2013 6:46 PM