This serves as a reference of all features that this change affects.
| Feature |
|---|
| Decrypt |
This serves as a reference of all specification documents that this change affects.
| Specification |
|---|
| Decrypt |
This serves as a reference for all implementations that this change affects.
| Language | Repository |
|---|---|
| C | aws-encryption-sdk-c |
| Java | aws-encryption-sdk-java |
| Javascript | aws-encryption-sdk-javascript |
| Python | aws-encryption-sdk-python |
The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this document are to be interpreted as described in RFC 2119.
When a decryption attempt is made on the Base64-encoding of a valid message, implementations SHOULD detect this and provide a more specific error message.
The message format is a binary format but users commonly attempt to decrypt the Base64 encoding of this data. Because the first two bytes of the message format have a very limited set of possible values (currently they are in fact fixed), the first two bytes of the Base64 encoding of a valid message are also simple to recognize.
If the version value ever advances beyond the hex value 40,
it will not be possible to catch this error for all supported versions
since 41 would then conflict with the Base64-encoded value for 1.
This is acceptable given it is a best-effort guard,
and also extremely unlikely
given how rarely we intended to change the version.
This change SHOULD NOT have any security implications.
This change should have positive operational impact because it removes ambiguity on a common failure mode, reducing potential for customer confusion and increasing the likelihood that customers can diagnose this root cause without needing to contact us.
When a decryption attempt is made on the Base64-encoding of a valid message, implementations SHOULD detect this and provide a more specific error message on a best-effort basis.
Implementations SHOULD detect the first two bytes of the Base64 encoding of any supported message versions and types and fail with a more specific error message. In particular, the hex values to detect for the current set of versions and types are:
| Version and type (hex) | Base64 encoding (ascii) | Base64 encoding (hex) |
|---|---|---|
| 01 80 | A Y ... | 41 59 ... |
Note that the bytes that follow the initial two in the Base64 encoding partially depend on subsequent bytes in the binary message format and hence are not as predictable.