This page is part of my digital garden.

This page might be unfinished or have typos. These pages are meant as part of a public living notebook to be edited over time. For more, visit the page explaining the concept of a digitial garden.

Security

Encryption

  • Consensus seems to be that XChaCha20 is the preferred encryption1 algorithm because AES is vulnerable to timing attacks unless done in hardware + AES-GCM has a foot gun in it’s counter2
    • ChaCha20 is what is used for Wireguard3 instead of AES because it’s more efficient on mobile/low-power devices4

  1. 2017 hn comments discussing trade-offs of ChaCha and AES ↩︎

  2. hn discussion on XChaChaPoly. Search for “GCM” on the page. ↩︎

  3. wireguard page on crypto used in the protocol ↩︎

  4. Cloudflare - Do the ChaCha: better mobile performance with cryptography (2015) ↩︎

Last updated on