AEAD_CHACHA20_POLY1305
E251780
AEAD_CHACHA20_POLY1305 is an authenticated encryption algorithm that combines the ChaCha20 stream cipher with the Poly1305 message authentication code to provide both confidentiality and integrity for data.
All labels observed (5)
| Label | Occurrences |
|---|---|
| ChaCha20-Poly1305 | 4 |
| AEAD_CHACHA20_POLY1305 canonical | 2 |
| ChaCha20-Poly1305 AEAD construction | 2 |
| AEAD_XCHACHA20_POLY1305 | 1 |
| ChaCha20 and Poly1305 for IETF Protocols | 1 |
How this entity was disambiguated
This entity first appeared as the object of triple T2263001 — resolving that mention is where its identity was fixed. The disambiguator weighed these candidate entities and picked the highlighted one (or “None”, minting a new entity). This is how homonymy is resolved: the same surface form can point to different entities.
Target entity: AEAD_CHACHA20_POLY1305 Context triple: [RFC 7539, specifies, AEAD_CHACHA20_POLY1305]
-
A.
AES-Poly1305
AES-Poly1305 is an authenticated encryption scheme that pairs the AES block cipher with the Poly1305 message authentication code to provide both confidentiality and integrity.
-
B.
AES-GCM
AES-GCM is an authenticated encryption mode of the Advanced Encryption Standard that provides both data confidentiality and integrity, widely used in modern network and security protocols.
-
C.
ChaCha20
ChaCha20 is a modern stream cipher designed by Daniel J. Bernstein, widely used for its high performance and strong security in protocols like TLS.
-
D.
AES-CCM
AES-CCM is an authenticated encryption mode that combines Counter (CTR) mode for confidentiality with CBC-MAC for integrity and authentication, commonly used in wireless and embedded security protocols.
-
E.
Poly1305
Poly1305 is a high-speed message authentication code (MAC) algorithm commonly used with stream ciphers like ChaCha20 to provide data integrity and authenticity.
- F. None of above. chosen
- G. Unsure - the case is ambiguous/there is not enough information to decide.
Target entity: AEAD_CHACHA20_POLY1305 Target entity description: AEAD_CHACHA20_POLY1305 is an authenticated encryption algorithm that combines the ChaCha20 stream cipher with the Poly1305 message authentication code to provide both confidentiality and integrity for data.
-
A.
AES-Poly1305
AES-Poly1305 is an authenticated encryption scheme that pairs the AES block cipher with the Poly1305 message authentication code to provide both confidentiality and integrity.
-
B.
AES-GCM
AES-GCM is an authenticated encryption mode of the Advanced Encryption Standard that provides both data confidentiality and integrity, widely used in modern network and security protocols.
-
C.
ChaCha20
ChaCha20 is a modern stream cipher designed by Daniel J. Bernstein, widely used for its high performance and strong security in protocols like TLS.
-
D.
AES-CCM
AES-CCM is an authenticated encryption mode that combines Counter (CTR) mode for confidentiality with CBC-MAC for integrity and authentication, commonly used in wireless and embedded security protocols.
-
E.
Poly1305
Poly1305 is a high-speed message authentication code (MAC) algorithm commonly used with stream ciphers like ChaCha20 to provide data integrity and authenticity.
- F. None of above. chosen
Statements (47)
| Predicate | Object |
|---|---|
| instanceOf |
AEAD construction
ⓘ
authenticated encryption with associated data algorithm ⓘ |
| associatedDataRole | authenticated but not encrypted ⓘ |
| basedOnCipherDesignedBy | Daniel J. Bernstein ⓘ |
| blockFunctionOutputBits | 512 ⓘ |
| category | modern AEAD cipher suite ⓘ |
| cipherType | stream cipher based ⓘ |
| designedFor |
high performance in software
ⓘ
resistance to timing attacks ⓘ |
| encryptionMode | counter mode using ChaCha20 ⓘ |
| encryptionType | symmetric-key encryption ⓘ |
| failureMode | nonce reuse is catastrophic for security ⓘ |
| keySizeBits | 256 ⓘ |
| MACInput | ciphertext and associated data ⓘ |
| MACKeySizeBits | 256 ⓘ |
| MACType | one-time polynomial MAC ⓘ |
| nonceRequirement | unique per key ⓘ |
| nonceSizeBits | 96 ⓘ |
| performanceCharacteristic | fast on CPUs without AES hardware acceleration ⓘ |
| primaryUseCase |
application-level message encryption
ⓘ
transport layer security ⓘ |
| provides |
authenticity
ⓘ
confidentiality ⓘ integrity ⓘ |
| recommendedBy |
Internet Engineering Task Force
ⓘ
surface form:
IETF
|
| securityAssumption |
ChaCha20 pseudorandomness
ⓘ
Poly1305 unforgeability with one-time keys ⓘ |
| securityGoal |
IND-CPA confidentiality
ⓘ
INT-CTXT integrity ⓘ |
| standardizedIn |
RFC 7539
ⓘ
RFC 8439 ⓘ |
| status | widely deployed ⓘ |
| supports | associated data ⓘ |
| tagSizeBits | 128 ⓘ |
| tagVerification | constant-time comparison recommended ⓘ |
| usedIn |
BoringSSL
ⓘ
Google Chrome ⓘ Mozilla Firefox ⓘ OpenSSL ⓘ QUIC ⓘ SSH implementations ⓘ TLS 1.2 (with extensions) ⓘ RFC 8446 ⓘ
surface form:
TLS 1.3
libsodium ⓘ |
| usesCipher | ChaCha20 ⓘ |
| usesKeyDerivation | ChaCha20 block function for Poly1305 key ⓘ |
| usesMAC | Poly1305 ⓘ |
How these facts were elicited
The pipeline generated the facts above by prompting gpt-5.1 with this entity's name + description and the instruction below.
You are a knowledge base construction expert. Given a subject entity and a description of it, return factual statements that you know for the subject as a JSON list of dictionaries(triples), where keys must be "subject", "predicate" and "object". The number of facts may be very high, between 25 to 50 or more, for very popular subjects. For less popular subjects, the number of facts can be very low, like 5 or 10. # Requirements - If you don't know the subject at all, return an empty list. - If the subject is not a named entity, return an empty list. - Include at least one triple where predicate is "instanceOf". - Do not get too wordy. - Separate several objects into multiple triples with one object.
Subject: AEAD_CHACHA20_POLY1305 Description of subject: AEAD_CHACHA20_POLY1305 is an authenticated encryption algorithm that combines the ChaCha20 stream cipher with the Poly1305 message authentication code to provide both confidentiality and integrity for data.
Referenced by (10)
Full triples — surface form annotated when it differs from this entity's canonical label.