Thanks!
Yes, I understand that the order in authenticated encryption is encrypt-then-HMAC, and that HMAC tags are produced independently.
Given that for some files HMACs might fail to be verified upon decryption, is there a way to notify the user of failed instances (ideally in a warning summary printed in the GUI, but at least in log files)?
I can see you have a command line interface as well:
Could we force decryption of the un-authenticted files in the read only format for diagnosis (with safe flags, of course)?
Thank you!