Security

SECURITY.md

Security Notes & Limitations

This project is educational. Do not use Caesar cipher in production.

Weaknesses

Easily breakable by brute-force (only 26 keys).
Provides no real security for modern use cases.
No integrity/authentication — ciphertext can be tampered with.

Improvements

Use modern ciphers like AES, ChaCha20, or RSA.
Apply libraries like cryptography or PyNaCl for real applications.
Always combine encryption with integrity/authentication (MAC).

References

OWASP Cryptographic Storage Cheat Sheet
NIST Cryptographic Standards

There aren’t any published security advisories