Condentiality, integrity and authenticity are basic requirements for ensuring secure com- munication over internet. Those requirements are separately provided by mode of operations, such as Cipher-Block-Chaining mode of operation (CBC) and Counter mode of operation (CTR), and message authentication code (MAC) at rst. Since the combination of mode of operation and MAC, including Encrypt-then-MAC (EtM), MAC-then-Encrypt (MtE) and Encrypt-and-MAC (E&M), almost doubled the computational cost, cryptographers work on designing a more ecient scheme called Authenticated Encryption (AE)" recently. Over past thirty years, many dierent kinds of authenticated encryption scheme were pro- posed. Most of them use Check Vector (CV)" or MAC together with mode of operations to additionally provide integrity and authenticity. Cryptographers classied the authenticated encryption schemes into two categories: First is improving the combination of mode of operation and MAC, such as Counter- with-CBC-MAC mode (CCM)", Encrypt-then-Authenticate-then-Translate mode (EAX)" and Carter-Wegman-with-CTR mode (CWC)". Above schemes also called Two-pass Au- thenticated Encryption Scheme (2-pass AE)" because it needs to go through message twice. Two-pass AE not only meet all the requirements for securing communication but also slightly decrease the computational cost when comparing to naive methods. Currently, researchers attempt to improve the authentication modes inside 2-pass AE algorithm to achieve better performance. Galois/Counter Mode of operation (GCM)" proposed by McGrew claimed to provide a low latency and low computational cost AE scheme from implementation aspect. Second is merging the privacy and authenticity modes into one scheme, which also called single-pass AE". Single-pass AE has speed advantage on providing integrity because they applied check vector and checksum as underlying authentication mechanism, which only require communications and simple operations. Nevertheless, some of redundancies are pre- computable. However, there is a disadvantage that receiver must do decryption algorithm rst, or he will not capable to check for the integrity. Such algorithm will waste computa- tional resources if any error occurred during transmission. In this thesis, we are going to propose two dierent kinds of authenticated encryption scheme using concept of error-propagation. First we construct a single-pass AE which use CBC mode as backbone, called Double-Block-Chaining (DBC)". DBC has implementation advantages and several special properties such as ackward decryption" andencryption algorithm only". In enhanced version, we design a novel approach to partially pre-check the integrity for DBC. Nevertheless, the associated-data (AD) is also authenticated in our Enhanced-DBC AE scheme. Second, we proposed an integrity checking mechanism, named S-Box chaining integrity checking mechanism(SC)". Despite its speed advantage, S-Box chaining" is easy to implement and after we combined it with CBC mode which turns out an simple and ecient two-pass AE, called S-Box Chaining CBC".