Making a case for `ChaCha20-Poly1305` ??

[keshav-space]

The aim is to let user choose from the pool of competent encryption algorithm that best suits their need:

• AES256 in Cipher Block Chaining mode - [ currently available ]
• ChaCha20 ( with 192-bit nonces and message authentication using Poly1305 )
  • doesn't require hardware acceleration
  • not vulnerable to cache-timing attacks
  • RFC, Dart Implementation

ChaCha20 is relatively faster compared to AES on older devices, but most modern mobile-phone processors supports AES-NI thus making AES also faster.

[Wjxfi]

Cool idea