From 66a061a8b018b562470355bd73072060e1f79508 Mon Sep 17 00:00:00 2001
From: Balakuntalam <156779824+Balakuntalam@users.noreply.github.com>
Date: Wed, 24 Jan 2024 17:59:25 +0530
Subject: [PATCH] Update abis-api.md

1st draft

Signed-off-by: Balakuntalam <156779824+Balakuntalam@users.noreply.github.com>
---
 docs/abis-api.md | 13 +++++++++----
 1 file changed, 9 insertions(+), 4 deletions(-)

diff --git a/docs/abis-api.md b/docs/abis-api.md
index 14ac8a22e..90a81db78 100644
--- a/docs/abis-api.md
+++ b/docs/abis-api.md
@@ -203,9 +203,6 @@ Below is the sample API detail for reference URL.
 
 **Sample Encrypted Response**
 
-```
-```
-
 {% hint style="info" %}
 **The structure of the encrypted data downloaded from referenceURL in MOSIP 1.2.0 or later versions**
 
@@ -232,8 +229,12 @@ Block 2, i.e. the encrypted actual data is again split into two parts,
 * The 1st part is the random 32 bytes which will be used as _**AAD**_ in AES encryption(first 32 bytes). From this 32 bytes AAD data, the first 12 bytes is _**IV/Nonce**_.
 * The 2nd part is the encrypted data which is encrypted using AES GCM PKCS5Padding.
 
+  **Note:**  In Java 11, for GCM mode encryption, PKCS5Padding is alternate to NoPadding. In Java 17, PKCS5Padding as an 
+  alternate is removed and instead **NoPadding** is used. However, the data is encrypted using PKCS5Padding in Java 11 
+  and the data is decrypted with **NoPadding** in Java 17.
 
-**The structure of the encrypted data downloaded from referenceURL in MOSIP 1.1.5.5 or prior versions**
+
+{% hint style="info" %} **The structure of the encrypted data downloaded from referenceURL in MOSIP 1.1.5.5 or prior versions**
 
 The data downloaded would be base64 encoded. Hence, after decoding the data will be in the below format. It will be divided into two Parts after splitting using #KEY\_SPLITTER#.
 {% endhint %}
@@ -255,6 +256,10 @@ Block 1, i.e. the encrypted key data is again split into two parts,
 Block 2, i.e. the encrypted actual data is again split into two parts,
 
 * The 1st part is the _**Encrypted data**_, encrypted using AES GCM PKCS5Padding.
+
+  **Note:**  In Java 11, for GCM mode encryption, PKCS5Padding is alternate to NoPadding. In Java 17, PKCS5Padding as an 
+  alternate is removed and instead **NoPadding** is used. However, the data is encrypted using PKCS5Padding in Java 11 
+  and the data is decrypted with **NoPadding** in Java 17.
 * The 2nd part is _**IV/Nonce**_ i.e. the last 32 bytes appended after encrypted data.
 {% endhint %}