Hi RbNaClers and Rubyists alike!
Some of you my have tried using RbNaCl and found it confusing. I’ve just
written some documentation for RandomNonceBox, which is the main API I
think most people should be using:
This is an “omakase” or “Cryptography on Rails” API where all of the
hard
decisions about cryptography have been made in advance. Most of them
have
not been made by amateurs but by professional cryptographers.
We think this is probably the best and possibly only truly secure API
for
Ruby cryptography which covers most of the known attacks. Rails’
ActiveSupport::MessageEncryptor comes close, but only in Rails 4+ as
previous versions have a known problem (reuse of the same key for
encryption and authentication)