Skip to content

v1.3.2 - AES-GCM Encryption Update
Compare
Choose a tag to compare
@CyberSphinxxx CyberSphinxxx released this 29 Oct 10:14
· 114 commits to main since this release
v1.3.2
8638a23
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.

Enhanced Security with AES-GCM Encryption

🔒 Overview

This major release introduces AES-GCM encryption for stored passwords, significantly improving security while maintaining usability. The update also includes UI improvements and comprehensive security documentation updates.

✨ New Features

  • AES-GCM 256-bit Encryption: All saved passwords are now encrypted before storage
  • Secure Key Generation: Implemented Web Crypto API for cryptographic operations
  • Enhanced Password Security: Protected storage with encryption and secure error handling
  • Updated Security Documentation: Comprehensive security policy and implementation details
  • Improved UI: Fixed alignment issues in saved passwords display

🛡️ Security Improvements

  • Encrypted password storage using AES-GCM
  • Secure key generation and management
  • Protected local storage implementation
  • Enhanced error handling for cryptographic operations
  • Updated security best practices

🔧 Technical Details

  • Encryption Algorithm: AES-GCM (256-bit)
  • Key Generation: Web Crypto API
  • Storage Method: Encrypted data with IV in local storage
  • Error Handling: Graceful fallback with secure error messages

📂 Files Affected

  • scripts.js – Added encryption logic and UI fixes
  • SECURITY.md – Updated security documentation
  • styles.css – UI alignment improvements

⚠️ Breaking Changes

  • Previously saved passwords will need to be re-saved due to encryption implementation
  • Local storage format has been updated to accommodate encrypted data

📋 Usage Instructions

  1. Existing Users: Please re-save your passwords to enable encryption
  2. New Users: All saved passwords will automatically be encrypted
  3. Security Settings: Review updated security documentation for best practices

🧪 Testing

  • ✅ Encryption/decryption functionality verified
  • ✅ UI alignment fixes confirmed
  • ✅ Backward compatibility tested
  • ✅ Error handling validated

📚 Documentation

  • Updated security policy with new features
  • Added technical implementation details
  • Updated known limitations
  • Added planned security improvements

This release significantly enhances the security of stored passwords while maintaining the user-friendly interface. Please report any issues or security concerns through the appropriate channels.

🔗 Links

Full Changelog: v1.3.1...v1.3.2

🤝 Contributing

Feedback and contributions are welcome! Please review our Contributing Guidelines and Code of Conduct.

Release v1.3.2
Published: October 29, 2024

Assets 2
Loading