blob: 6aa7ed25d0c5289a9f3f15164b574e8abcf60a81 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
|
Symmetric Encryption
====================
Symmetric encryption is a way to encrypt (hide the plaintext value) material
where the encrypter and decrypter both use the same key.
Block ciphers
-------------
Block ciphers work by encrypting content in chunks, often 64- or 128-bits. They
combine an underlying algorithm (such as AES), with a mode (such as CBC, CTR,
or GCM). A simple example of encrypting content with AES is:
.. code-block:: pycon
>>> from cryptography.primitives import BlockCipher, CBC
>>> from cryptography.primitives.aes import AES
>>> cipher = BlockCipher(AES(key), CBC(iv))
>>> cipher.encrypt("my secret message") + cipher.finalize()
# The ciphertext
[...]
Here ``key`` is the encryption key (which must be kept secret), and ``iv`` is
the initialization vector (which should be random). Exactly what form these
values should take is described for each of the ciphers and modes.
``encrypt()`` should be called repeatedly with additional plaintext, and it
will return the encrypted bytes, if there isn't enough data, it will buffer it
internally. ``finalize()`` should be called at the end, and will return
whatever data is left.
Ciphers
~~~~~~~
AES
+++
Modes
~~~~~
CBC
+++
|
