From f916dfcdbca80ca8f43c554c404190f04b526029 Mon Sep 17 00:00:00 2001
From: Paul Kehrer <paul.l.kehrer@gmail.com>
Date: Sat, 27 May 2017 14:24:28 -0500
Subject: re-add the why of cryptography to the faq with some small updates
 (#3621)

* re-add the why of cryptography to the faq with some small updates

* reorder the items a bit
---
 docs/faq.rst | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)

(limited to 'docs/faq.rst')

diff --git a/docs/faq.rst b/docs/faq.rst
index 9706faa7..bc6fc255 100644
--- a/docs/faq.rst
+++ b/docs/faq.rst
@@ -14,6 +14,25 @@ to NaCl.
 
 If you prefer NaCl's design, we highly recommend `PyNaCl`_.
 
+Why use ``cryptography``?
+-------------------------
+
+If you've done cryptographic work in Python before you have likely encountered
+other libraries in Python such as *M2Crypto*, *PyCrypto*, or *PyOpenSSL*. In
+building ``cryptography`` we wanted to address a few issues we observed in the
+legacy libraries:
+
+* Extremely error prone APIs and insecure defaults.
+* Use of poor implementations of algorithms (i.e. ones with known side-channel
+  attacks).
+* Lack of maintenance.
+* Lack of high level APIs.
+* Lack of PyPy and Python 3 support.
+* Poor introspectability and thus poor testability.
+* Absence of algorithms such as
+  :class:`AES-GCM <cryptography.hazmat.primitives.ciphers.modes.GCM>` and
+  :class:`~cryptography.hazmat.primitives.kdf.hkdf.HKDF`.
+
 Compiling ``cryptography`` on macOS produces a ``fatal error: 'openssl/aes.h' file not found`` error
 ----------------------------------------------------------------------------------------------------
 
-- 
cgit v1.2.3