AES-CBC (the core of nip04) has been removed from many crypto suites, including TLS 1.3, due the many security issues in poor implementations, mostly related to oracle padding attacks, which are also possible in nip04.
Login to reply
Replies (2)
Said attack is not possible in NIP04 due to signatures.
Talking about attacks without knowledge is easy.
Is it a bad spec? Mostly. Is it so bad that we have to rip out every use case? Probably not.
Things like padding can be retrofitted into existing NIP-04 use cases. For example JSON lists can use space padding.
"Probably" is not a word you want to use in security systems.