π Banking-Grade Encryption Release
This release upgrades the package to AES-256-GCM with authenticated encryption, meeting modern security standards for financial applications.
π Major Features
- AES-256-GCM with authenticated encryption (AEAD)
- Random IV generation per encryption (prevents pattern analysis)
- PBKDF2-SHA256 with 210,000 iterations (OWASP 2023 recommendation)
- Tamper detection via authentication tags
- 16+ character password requirement
π‘οΈ Security Improvements
- Upgraded from AES-128-CBC to AES-256-GCM
- Random 32-byte salt per operation
- SHA-256 instead of SHA-1
- No manual padding required (GCM handles it)
β Testing
- 13 comprehensive security tests
- Validates encryption, decryption, tamper detection
- Ensures random IV functionality