I'm curious as to why there are no utility functions for base64/AES/etc in ExtJS.
I know that we should use HTTPS to ensure encryption between client/server.
However, I want to add another layer of security above that.
Simply put, I don't trust that HTTPS is 100% infallible. Especially when things like HeartBleed and potential back-doors are intentionally written into the security protocols (think big-gov or NSA).
There are too many news reports where the DB was compromised and user data stolen. I use multiple layers of ciphers and one-way salts for sensitive data. This may be overkill, but better than being liable for millions of dollars.