secp521r1 and AES-256-CTR with HMAC-SHA-384
ISC License
cryptobox
Cryptobox aims to provide similar functionality to NaCL[1], while using FIPS ciphers. It provides the following packages:
box: secure and authenticate small messages with 20-year security using public key cryptography.
stoutbox: secure and authenticate small messages with 50-year security using public key cryptography.
secretbox: secure and authenticate small messages with 20-year security.
strongbox: secure and authenticate small messages with 50-year security.
Developers should prefer the box and stoutbox packages, as these reduce the possibility of key compromise by using public keys.
cryptobox operates on the concept of "boxes", which are encrypted and authenticated secure messages. Boxes operate under the following threat model:
License:
cryptobox is released under the ISC license. See the include LICENSE file for details.
See also:
The Cryptobox project: http://cryptobox.tyrfingr.is/. This site contains the specification, including test vectors, and a guidebook for building secure systems using Cryptobox.