Weak cipher algorithm
Encryption algorithm associated with the cipher context is weak
Description
This defect occurs when you associate a weak encryption algorithm with the cipher context.
Risk
Some encryption algorithms have known flaws. Though the OpenSSL library still supports the algorithms, you must avoid using them.
If your cipher algorithm is weak, an attacker can decrypt your data by exploiting a known flaw or brute force attacks.
Fix
Use algorithms that are well-studied and widely acknowledged as secure.
For instance, the Advanced Encryption Standard (AES) is a widely accepted cipher algorithm.
Examples
Result Information
| Group: Cryptography | 
| Language: C | C++ | 
| Default: Off | 
| Command-Line Syntax: CRYPTO_CIPHER_WEAK_CIPHER | 
| Impact: Medium | 
Version History
Introduced in R2017a
See Also
Topics
- Interpret Bug Finder Results in Polyspace Desktop User Interface
- Interpret Bug Finder Results in Polyspace Access Web Interface (Polyspace Access)
- Address Results in Polyspace User Interface Through Bug Fixes or Justifications
- Address Results in Polyspace Access Through Bug Fixes or Justifications (Polyspace Access)