Using the wrong cryptography. By VESMA System Architecture and Security. Home-grown cryptography. Don’t do it Rip the code out and replace it with library calls of respected algorithms. Protocol from low-level algorithms and wrong communication protocols.
System Architecture and Security
- SSL 3 and TLS
Weak key derivation function protocolsFailing to use salt
=> Replace calls to weak algorithms with more secure versions
Wrong cryptographic primitive