We've recently migrated to cloud storage (vs local storage) for the 2.0 version of our app and some of our users are concerned about the security of their data.<p>Their use case as researchers prevents them from sharing their data with a 3rd party.<p>Even assuming the 3rd party was a good actor it could still get hacked.<p>If we had end-to-end encryption where it as encrypted on the users workstation, mobile device, before being sent then this problem is essentially solved.<p>The problem is I don't want to roll my own crypto. Time and time again it's been shown that if you're not an absolute expert you're probably going to screw it up. It's even hard if you ARE an expert.<p>Things like key recovery, which keys to use, etc. are all insanely important decisions.<p>Do you guys have any papers or libraries that you recommend?