2019.04.24 17:00:24 (1121066366625353729) from Daniel J. Bernstein:
0.57 cycles/byte for ChaCha20 to encrypt 4KB on one core of new Intel Cannon Lake CPU. I haven't seen AES-256 results as fast as this on the same CPU, even though AES-256 has special hardware support and much smaller security margin. https://bench.cr.yp.to/results-stream.html#amd64-cannon
2019.04.24 17:05:09 (1121067560018108419) from Daniel J. Bernstein:
NSA's Speck software handles 4KB at 0.56 cycles/byte on this CPU, but only if you scale the block size down to 64 bits (broken by https://sweet32.info), scale the key size down to 96 bits (broken by easy multi-target attacks), and allow even less security margin than AES.