Soften the warning language on PKCS #1 v1.5 padding (#8988)

* Soften the warning language on PKCS #1 v1.5 padding
This commit is contained in:
Scott Miller 2020-05-14 12:29:21 -05:00 committed by GitHub
parent 8d6c679241
commit d1ba50384a
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23

View file

@ -113,7 +113,7 @@ These parameters apply to the `seal` stanza in the Vault configuration file:
- `0x0001` `CKM_RSA_PKCS`
~> **Warning**: CKM_RSA_PKCS specifies the PKCS #1 v1.5 padding scheme, which is
subject to several padding oracle attacks. Use of CKM_RSA_PKCS_OAEP is
in considered less secure than OAEP. Where possible, use of CKM_RSA_PKCS_OAEP is
recommended over CKM_RSA_PKCS.