Authenticated Encryption with Associated Data
AEAD ciphers encrypt data and authenticate it in one operation, and can also authenticate extra unencrypted data such as packet headers. This closes the gap where encrypted but unauthenticated data can be tampered with, a flaw behind many padding-oracle attacks. TLS 1.3 only allows AEAD ciphers, with AES-GCM and ChaCha20-Poly1305 being the common choices.