Cryptography is a small but important part of security, and choosing the right cryptographic algorithm is a small but important part of deploying cryptography. As part of some recent work I’ve been reviewing the cryptographic algorithms slated for inclusion in the W3C Crypto API, currently in last call.
Fortunately, there are already a number of papers surveying the state of the art in cryptoanalysis of deployed algorithms, including the ENISA annual report on algorithms and key lengths (taking over form the old ECRYPT survey). There is also Rogaway’s comprehensive block cipher mode survey from 2011. Unfortunately, some methods proposed by the W3C TC don’t appear in either document, but tracking down the state of the art results for these was an interesting task. For the TL/DR, here’s a table summarizing the findings: