RootCauseunvalidated
BouncyCastleAesGcmBytesEncryptor in Spring performs implicit key derivation (PBKDF2-style) before AES/GCM, rather than using the provided key directly. The C# implementation uses the raw key/parameters and therefore produces a different derived key, causing AES/GCM authentication to fail.
b7aeb7f5-b08e-4fba-86ab-01a97fbea4f3
BouncyCastleAesGcmBytesEncryptor in Spring performs implicit key derivation (PBKDF2-style) before AES/GCM, rather than using the provided key directly. The C# implementation uses the raw key/parameters and therefore produces a different derived key, causing AES/GCM authentication to fail.