kubernetes
/
website
mirror of https://github.com/kubernetes/website.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Fix the supported key length for AES-CBC 

Co-authored-by: Dimitar Mirchev <dimitar.mirchev@sap.com>
This commit is contained in:
Alidzhikov 2025-01-14 10:57:07 +02:00
parent e8bb8cca3d
commit 43ce94b77f
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
content/en/docs/tasks/administer-cluster/encrypt-data.md
View File

@ -241,7 +241,7 @@ The following table describes each available provider.
<td>AES-CBC with <a href="https://datatracker.ietf.org/doc/html/rfc2315">PKCS#7</a> padding</td>
<td>Weak</td>
<td>Fast</td>
<td>32-byte</td>
<td>16, 24, or 32-byte</td>
</tr>
<tr>
<td colspan="4">Not recommended due to CBC's vulnerability to padding oracle attacks. Key material accessible from control plane host.</td>