Shredding and removing the original plain text event file ensures that no sensitive data remains on disk. Listing 13 shown below describes the decrypt mode
分解并删除原始的纯文本事件文件,确保磁盘上没有遗留敏感的数据。
2
On decryption, each event is written to disk, unencrypted, and the plain text read back in to be displayed to the user.
在解密阶段,每个事件都被写到磁盘上,然后进行解密,最后读回纯文本并显示给用户。
3
Note that this means you will have to write a plain-text file to disk which isn't secure (people could modify the password hash if they have write access to the file).