Weak Symmetric Algorithm

What does this mean ?

Using a defective or unsafe cryptographic algorithm is an unnecessary risk that might expose sensitive information. The adoption of a non-standard algorithm is risky because a determined attacker may be able to break the algorithm and jeopardize the data being secured. There may be well-known strategies for breaking the algorithm.

What can happen ?

The deployment of a faulty or hazardous cryptographic algorithm may jeopardize the secrecy and integrity of sensitive data. Any accountability to communication content protected by cryptography could be compromised.

Recommendation

• Use a cryptographic algorithm, such as AES, that is currently regarded as strong by specialists in the area.

References

• https://owasp.org/www-community/vulnerabilities/Using_a_broken_or_risky_cryptographic_algorithm
• https://cwe.mitre.org/data/definitions/327.html