Skip to content

Commit

Permalink
Update AES-GCM verification text
Browse files Browse the repository at this point in the history
  • Loading branch information
@jefferai
jefferai committed Apr 7, 2017
1 parent 5fed5e2 commit 3f3eddc
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion website/source/docs/internals/security.html.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -80,7 +80,7 @@ barrier for all requests made to the backend. The security barrier automatically
all data leaving Vault using the [Advanced Encryption Standard (AES)](https://en.wikipedia.org/wiki/Advanced_Encryption_Standard)
cipher in the [Galois Counter Mode (GCM)](https://en.wikipedia.org/wiki/Galois/Counter_Mode).
The nonce is randomly generated for every encrypted object. When data is read from the
security barrier the GCM authentication tag is verified prior to decryption to detect
security barrier the GCM authentication tag is verified during the decryption process to detect
any tampering.

Depending on the backend used, Vault may communicate with the backend over TLS
Expand Down

0 comments on commit 3f3eddc

Please sign in to comment.