[Cryptography-dev] Low level API for Symmetric Encryption
Jean-Paul Calderone
jean-paul at hybridcluster.com
Thu Aug 8 00:32:31 CEST 2013
On 08/07/2013 06:16 PM, Donald Stufft wrote:
> So to kick things off I'd like to get AES-GCM exposed and figured it could be a good way to start the ball rolling for figuring out how we want to expose symmetric ciphers at the low level API.
>
> I'm thinking cryptography.primitives.aes which has classes named like AES128GCM, AES256CBC, etc. The obvious naming scheme being AlgorithmKeysizeMode.
>
>
GCM (CBC, etc) is a mode of operation that is applicable to arbitrary
block ciphers.
Why should it be tied to "AES128"? Why wouldn't you GCM(AES128())? If
you're talking about primitives, AES128 is more primitive than GCM on
AES128. And GCM isn't specific to AES, so I don't see
cryptography.primitives.aes as the proper home for it.
I hope these aren't questions with highly obvious answers.
Jean-Paul
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 900 bytes
Desc: OpenPGP digital signature
URL: <http://mail.python.org/pipermail/cryptography-dev/attachments/20130807/e90148b5/attachment-0001.pgp>
More information about the Cryptography-dev
mailing list