@@ -2043,11 +2043,11 @@
 	   the rest of the bits are fixed, i.e. for limited export ciphers (bits < 56) */
 
 	/* Indicates which SSL/TLS protocol version first defined the cipher */
 	LAPPEND_STR(interp, objPtr, "min_version", SSL_CIPHER_get_version(cipher), -1);
 
-	/* Cipher NID */
+	/* Cipher NID, digest NID (none for AEAD cipher suites), Key Exchange NID, and authentication NID */
 	LAPPEND_STR(interp, objPtr, "cipherNID", (char *)OBJ_nid2ln(SSL_CIPHER_get_cipher_nid(cipher)), -1);
 	LAPPEND_STR(interp, objPtr, "digestNID", (char *)OBJ_nid2ln(SSL_CIPHER_get_digest_nid(cipher)), -1);
 	LAPPEND_STR(interp, objPtr, "keyExchangeNID", (char *)OBJ_nid2ln(SSL_CIPHER_get_kx_nid(cipher)), -1);
 	LAPPEND_STR(interp, objPtr, "authenticationNID", (char *)OBJ_nid2ln(SSL_CIPHER_get_auth_nid(cipher)), -1);
 
@@ -2059,11 +2059,12 @@
 	LAPPEND_INT(interp, objPtr, "cipher_id", (int) SSL_CIPHER_get_id(cipher));
 
 	/* Two-byte ID used in the TLS protocol of the given cipher */
 	LAPPEND_INT(interp, objPtr, "protocol_id", (int) SSL_CIPHER_get_protocol_id(cipher));
 
-	/* Textual description of the cipher */
+	/* Textual description of the cipher. Includes: cipher name, protocol version, key
+	   exchange, authentication, symmetric encryption method, message authentication code */
 	if (SSL_CIPHER_description(cipher, buf, sizeof(buf)) != NULL) {
 	    LAPPEND_STR(interp, objPtr, "description", buf, -1);
 	}
 
 	/* Digest used during the SSL/TLS handshake when using the cipher. */