<div dir="ltr"><div class="gmail_signature">I just published a blog post on a set of libraries for Go, Python, Ruby, Rust, and TypeScript which implement two simple misuse resistant authenticated encryption modes of AES:</div><div class="gmail_signature"><br></div><div class="gmail_signature"><a href="https://tonyarcieri.com/introducing-miscreant-a-multi-language-misuse-resistant-encryption-library">https://tonyarcieri.com/introducing-miscreant-a-multi-language-misuse-resistant-encryption-library</a><br></div><div class="gmail_signature"><br></div><div class="gmail_signature">You can find all of the libraries here:</div><div class="gmail_signature"><br></div><div class="gmail_signature"><a href="https://github.com/miscreant/miscreant">https://github.com/miscreant/miscreant</a><br></div><div class="gmail_signature"><br></div><div class="gmail_signature">Particularly notable is AES-PMAC-SIV: a parallelizable variant of the original AES-SIV construction (which was based on CMAC) which provides much better performance.</div><div class="gmail_signature"><br></div><div class="gmail_signature">Enjoy!</div>
</div>