[Crypto] Use explicit OsRng for IV and salt generation

## Description

IV and salt generation uses `rand::thread_rng()` instead of explicit `OsRng` for cryptographic material.

## Locations

- https://github.com/decipherhub/cipherbft/blob/1140ac3ed0e18f6e5abd4e31aa673a97f74e44f7/crates/crypto/src/keystore/cipher.rs#L63-L68
- https://github.com/decipherhub/cipherbft/blob/1140ac3ed0e18f6e5abd4e31aa673a97f74e44f7/crates/crypto/src/keystore/kdf.rs#L72-L77

## Severity

Medium - Best practice for cryptographic operations.

	Scrypt {
	/// Derived key length in bytes
	dklen: u32,
	/// CPU/memory cost parameter (must be power of 2)
	n: u32,
	/// Block size parameter

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Crypto] Use explicit OsRng for IV and salt generation #130

Description

Locations

Severity

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

	}
	}

	/// Cipher parameters for AES-128-CTR
	#[derive(Debug, Clone, Serialize, Deserialize, PartialEq)]
	pub struct CipherParams {

[Crypto] Use explicit OsRng for IV and salt generation #130

Description

Description

Locations

Severity

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions