Too Long; Didn't Read
One of the main reasons that lead to insecure NodeJS applications is insecure or bad usage of cryptography APIs. This article assumes readers are familiar with the following concepts: A key is a piece of information that is used to encrypt and decrypt data and can either be stand-alone (for symmetric encryption, meaning both the encryption and decryption are performed with the same key) A salt is a random piece of data used during encryption to ensure that the same input does not always result in the same output. An experienced user knows the error occurs because he did not concatenate the results from the update calls.