diff options
| author | Paul Kehrer <paul.l.kehrer@gmail.com> | 2013-12-04 15:26:07 -0800 |
|---|---|---|
| committer | Paul Kehrer <paul.l.kehrer@gmail.com> | 2013-12-04 15:26:07 -0800 |
| commit | 289b600f867b671e94957e8eab3736d88091978a (patch) | |
| tree | b8774484bd2402beeb06d817b3412ea82e632122 | |
| parent | 3029fe414a3dba0231a44e72ddfc398634c173de (diff) | |
| parent | d4f938303d1c5813bf23a8acfe9326817bcd95e9 (diff) | |
| download | cryptography-289b600f867b671e94957e8eab3736d88091978a.tar.gz cryptography-289b600f867b671e94957e8eab3736d88091978a.tar.bz2 cryptography-289b600f867b671e94957e8eab3736d88091978a.zip | |
Merge pull request #281 from alex/be-more-specific
Be more specific about when you can trust authentication on GCM
| -rw-r--r-- | docs/hazmat/primitives/symmetric-encryption.rst | 7 |
1 files changed, 4 insertions, 3 deletions
diff --git a/docs/hazmat/primitives/symmetric-encryption.rst b/docs/hazmat/primitives/symmetric-encryption.rst index 8d8d558b..977a897b 100644 --- a/docs/hazmat/primitives/symmetric-encryption.rst +++ b/docs/hazmat/primitives/symmetric-encryption.rst @@ -329,9 +329,10 @@ Modes .. danger:: - When using this mode you MUST not use the decrypted data until every - byte has been decrypted. GCM provides NO guarantees of ciphertext - integrity until decryption is complete. + When using this mode you MUST not use the decrypted data until + :meth:`cryptography.hazmat.primitives.interfaces.CipherContext.finalize` + has been called. GCM provides NO guarantees of ciphertext integrity + until decryption is complete. GCM (Galois Counter Mode) is a mode of operation for block ciphers. An AEAD (authenticated encryption with additional data) mode is a type of |