Initialization Vector (IV) Reuse

github.com/upspin/upsin is vulnerable to Initialization Vector IV reuse. The vulnerability exists due to the lack of entropy in its IV and would generally affect large files which are above 2^36 bytes...

Google Upspin Secure File-Sharing Released to Open Source

Google has released to open source new file-sharing interfaces and protocols it calls Upspin that allow users to securely share files using a global namespace rather than uploading and downloading content or sharing it first with a web-based service. Upspin is largely a consumer tool, Google said...