datareturned in the response is hex-encoded.
AES-256-GCMkeys, a 12-byte nonce is auto-generated and returned as part of the encrypted data response. Never encrypt with the same key more than 2³² times to reduce the risk of a nonce-repeat which will expose the key.
RSAES_OAEP_SHA_256encryption algorithm which uses the
SHA-256hash function) is
keylength(bytes) - 66. So an
RSA-4096keypair cannot encrypt more than 446-bytes of data (
4096/8 - 66).