From b3a082aed20c1ccfad12df73e69ff841dfffe82a Mon Sep 17 00:00:00 2001
From: Carlos Holguera <perezholguera@gmail.com>
Date: Fri, 29 Nov 2024 10:01:40 +0100
Subject: [PATCH] Update MASTG-TEST-0221.md evaluation

---
 tests-beta/android/MASVS-CRYPTO/MASTG-TEST-0221.md | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/tests-beta/android/MASVS-CRYPTO/MASTG-TEST-0221.md b/tests-beta/android/MASVS-CRYPTO/MASTG-TEST-0221.md
index 92a31b6075..e0deedc183 100644
--- a/tests-beta/android/MASVS-CRYPTO/MASTG-TEST-0221.md
+++ b/tests-beta/android/MASVS-CRYPTO/MASTG-TEST-0221.md
@@ -25,3 +25,5 @@ The output should contain a list of locations where insecure symmetric encryptio
 ## Evaluation
 
 The test case fails if you can find [insecure or deprecated](../../../Document/0x04g-Testing-Cryptography.md#Identifying-Insecure-and/or-Deprecated-Cryptographic-Algorithms) encryption algorithms being used.
+
+For example, [DES (Data Encryption Standard) and 3DES (Triple DES)](https://developer.android.com/privacy-and-security/risks/broken-cryptographic-algorithm), are deprecated by [NIST SP 800-131A Rev. 2](https://csrc.nist.gov/publications/detail/sp/800-131a/rev-2/final) due to vulnerabilities such as brute-force attacks and meet-in-the-middle attacks. Replace them with stronger alternatives, such as [AES-256](https://developer.android.com/privacy-and-security/cryptography#choose-algorithm), which is widely recognized as secure for modern apps.