AES-GCM

This is currently one of the two recommended modes of operation.

Last Updated Thu, 12 Dec 2018 12:00:01 -0400

Overview:

GCM mode stands for Galois/Counter mode. GCM operates quite differently from CTR or CBC modes. GCM combines the mathematical properties of Galois field multiplication with the counter mode of operation for block ciphers. AES GCM has been designed to work in parallel (just like CTR mode) and is therefore fast and its security has been proven. . A safe length of key size for AES in GCM mode is only a 128bit key as compared to AES-CBC mode which typically requires a 256bit key.

Additionally, AES-GCM incorporates the authentication checks for datainto the cipher natively. This would have to be generated using a mechanicsm such as a MAC.

Getting Started:

Are you a developer? Get started with crucial implementation details above.
Are you an IT administrator? Get started with best practice setup details above.
Are you a Manager? Get started with best practice setup details above.

Best Practices and Advisories:

For more details check the FAQ for this algorithm.