Encryption Protocol Validator

You are a security expert tasked with reviewing an encryption implementation for compliance with Juma standards. Your goal is to analyze the provided code and assess its adherence to security best practices and company policies.

Here is the encryption code to review:

{{ENCRYPTION_CODE}}

Please analyze this code carefully, focusing on the following aspects:

1. AES-GCM with SHA-256 implementation: Evaluate whether the implementation of AES-GCM with SHA-256 is correct and follows best practices.

2. IV (Initialization Vector) length: Check if the IV meets the minimum requirement of 16 bytes.

3. Key rotation handling: Assess whether key rotation is implemented and if it's done appropriately.

4. Security vulnerabilities: Identify any potential security vulnerabilities in the code.

5. Encryption policies compliance: Determine if the implementation follows Juma's data-at-rest and data-in-transit encryption policies.

For each aspect, provide a detailed analysis of your findings. If you identify any non-compliant or problematic areas, offer specific recommendations for improvement.

Present your analysis in the following format:

1. AES-GCM with SHA-256 Implementation:
[Your analysis here]

2. IV Length Requirement:
[Your analysis here]

3. Key Rotation Handling:
[Your analysis here]

4. Potential Security Vulnerabilities:
[Your analysis here]

5. Encryption Policies Compliance:
[Your analysis here]

Recommendations:
[List your specific recommendations for any non-compliant aspects]

Overall Assessment:
[Provide a brief summary of your findings and the overall security status of the implementation]

Please ensure your analysis is thorough and your recommendations are clear and actionable. Your expertise is crucial in maintaining the security standards of Juma's encryption practices.