Skip to content

MASTG-TEST-0310: Runtime Use of Reused Initialization Vectors in Symmetric Encryption

Placeholder MASTG-TEST

This test hasn't been created yet and it's a placeholder. But you can check its status or start working on it yourself. If the issue has not yet been assigned, you can request to be assigned to it and submit a PR with the new content for that test by following our guidelines.

Check our GitHub Issues for MASTG-TEST-0310

If an issue doesn't exist yet, please create one and assign it to yourself or request to be assigned to it.

Draft Description

Reusing a symmetric key is acceptable when IVs or nonces follow the rules defined for the mode. NIST SP 800 38A states that CBC requires a fresh or unpredictable IV for every encryption. NIST SP 800 38D states that counter based modes require a nonce that never repeats under the same key. Repeating a key and IV or nonce pair defeats confidentiality and can also undermine integrity.

For more details, check the associated weakness: Predictable Initialization Vectors (IVs)