From 4d74d8ddd871d7cb6d245f948f9a495abc6d0899 Mon Sep 17 00:00:00 2001 From: Paul Miller Date: Thu, 25 Apr 2024 14:01:41 +0000 Subject: [PATCH] readme: note on aes --- README.md | 2 ++ 1 file changed, 2 insertions(+) diff --git a/README.md b/README.md index 9cb5e6f..32850ba 100644 --- a/README.md +++ b/README.md @@ -463,6 +463,8 @@ constant-timeness_. Even statically typed Rust, a language without GC, for some cases. If your goal is absolute security, don't use any JS lib — including bindings to native ones. Use low-level libraries & languages. Nonetheless we're targetting algorithmic constant time. +AES uses T-tables, which means it can't be done in constant-time in JS. + ### Supply chain security * **Commits** are signed with PGP keys, to prevent forgery. Make sure to verify commit signatures.