As (increasingly frequent) data leaks have proven, encryption is hard, and good encryption can be even harder. Today, Google has announced the first major release of Tink, an open-source, cross-platform library designed to make secure encryption easier for developers to use correctly.
To achieve this goal, Tink offers a variety of built-in encryption and decryption methods, key generation tools (to be used outside of your code, for safety), key rotation, and remote key support. And as a show of faith in Tink’s security claims, Google themselves use it in a variety of major projects.
Tink provides secure APIs that are easy to use correctly and hard(er) to misuse. It reduces common crypto pitfalls with user-centered design, careful implementation and code reviews, and extensive testing. At Google, Tink is already being used to secure data of many products such as AdMob, Google Pay, Google Assistant, Firebase, the Android Search App, etc.
Tink is available to use today, and interested developers can jump headfirst into the documentation.