The conversion of data into a secret code for transmission over a public network. Today, most cryptography is digital, and the original text ("plaintext") is turned into a coded equivalent called "ciphertext" via an encryption algorithm. The ciphertext is decrypted at the receiving end and turned back into plaintext.
Keys Are the Key
The encryption algorithm uses a "key," which is a binary number that is typically from 40 to 256 bits in length. The greater the number of bits in the key (cipher strength), the more possible key combinations and the longer it would take to break the code. The data are encrypted, or "locked," by combining the bits in the key mathematically with the data bits. At the receiving end, the key is used to "unlock" the code and restore the original data.
Secret Vs. Public Key
Secret key cryptography and public key cryptography are the two major cryptographic architectures.
Secret Keys - Symmetric System
The first method uses a secret key, such as the DES and AES algorithms. Both sender and receiver use the same key to encrypt and decrypt. This is the fastest computation method, but getting the secret key to the recipient in the first place is a problem that is often handled by the second method.
Public Keys - Asymmetric System
The second method uses a two-part key, such as RSA and El Gamal. Each recipient has a private key that is kept secret and a public key that is published for everyone. The sender looks up or is sent the recipient's public key and uses it to encrypt the message. The recipient uses the private key to decrypt the message and never publishes or transmits the private key to anyone. Thus, the private key is never in transit and remains invulnerable.
Both Are Used Together
Secret key and public key systems are often used together, such as the AES secret key and the RSA public key. The secret key method provides the fastest decryption, and the public key method provides a convenient way to transmit the secret key. This is called a "digital envelope." For example, the PGP e-mail encryption program uses one of several public key methods to send the secret key along with the message that has been encrypted with that secret key (see PGP).
Get Faster - Get Stronger
It has been said that any encryption code can be broken given enough time to compute all permutations. However, if it takes months to break a code, the war could already be lost, or the thief could have long absconded with the money from the forged financial transaction. As computers get faster, to stay ahead of the game, encryption algorithms have to become stronger by using longer keys and more clever techniques. See XOR, AES, DES, RSA, plaintext, digital signature, digital certificate, quantum cryptography, steganography and chaff and winnow.
Secret Key Vs. Public Key
The secret method uses the same key to encrypt and decrypt. The problem is transmitting the key to the recipient in order to use it. The public key method uses two keys: one kept private and never transmitted, while the other is made public. Very often, the public key method is used to safely send the secret key to the recipient so that the message can be encrypted using the faster secret key algorithm.
Some Public History About Secret Methods
The following is reprinted with permission from RSA Security, Inc.
In 1518, a Benedictine monk named Johannes Trithemius wrote "Polygraphiae," the first published treatise on cryptography. Later, his text "Steganographia" described a cipher in which each letter is represented by words in successive columns of text, designed to hide inconspicuously inside a seemingly pious book of prayer.
Polygraphiae and Steganographia attracted a considerable amount of attention not only for their meticulous analysis of ciphers but more notable for the unexpected thesis of Steganographia's third and final section, which claimed that messages communicated secretly were aided in their transmission by a host of summoned spirits.
As might be expected, Trithemius' works were widely renounced as having magical content - by no means an unfamiliar theme in cryptographic history - and a century later fell victim to the zealous flames of the Inquisition during which they were banned as heretical sorcery.
Keys Are the Key
The encryption algorithm uses a "key," which is a binary number that is typically from 40 to 256 bits in length. The greater the number of bits in the key (cipher strength), the more possible key combinations and the longer it would take to break the code. The data are encrypted, or "locked," by combining the bits in the key mathematically with the data bits. At the receiving end, the key is used to "unlock" the code and restore the original data.
Secret Vs. Public Key
Secret key cryptography and public key cryptography are the two major cryptographic architectures.
Secret Keys - Symmetric System
The first method uses a secret key, such as the DES and AES algorithms. Both sender and receiver use the same key to encrypt and decrypt. This is the fastest computation method, but getting the secret key to the recipient in the first place is a problem that is often handled by the second method.
Public Keys - Asymmetric System
The second method uses a two-part key, such as RSA and El Gamal. Each recipient has a private key that is kept secret and a public key that is published for everyone. The sender looks up or is sent the recipient's public key and uses it to encrypt the message. The recipient uses the private key to decrypt the message and never publishes or transmits the private key to anyone. Thus, the private key is never in transit and remains invulnerable.
Both Are Used Together
Secret key and public key systems are often used together, such as the AES secret key and the RSA public key. The secret key method provides the fastest decryption, and the public key method provides a convenient way to transmit the secret key. This is called a "digital envelope." For example, the PGP e-mail encryption program uses one of several public key methods to send the secret key along with the message that has been encrypted with that secret key (see PGP).
Get Faster - Get Stronger
It has been said that any encryption code can be broken given enough time to compute all permutations. However, if it takes months to break a code, the war could already be lost, or the thief could have long absconded with the money from the forged financial transaction. As computers get faster, to stay ahead of the game, encryption algorithms have to become stronger by using longer keys and more clever techniques. See XOR, AES, DES, RSA, plaintext, digital signature, digital certificate, quantum cryptography, steganography and chaff and winnow.
Secret Key Vs. Public Key
The secret method uses the same key to encrypt and decrypt. The problem is transmitting the key to the recipient in order to use it. The public key method uses two keys: one kept private and never transmitted, while the other is made public. Very often, the public key method is used to safely send the secret key to the recipient so that the message can be encrypted using the faster secret key algorithm.
Some Public History About Secret Methods
The following is reprinted with permission from RSA Security, Inc.
In 1518, a Benedictine monk named Johannes Trithemius wrote "Polygraphiae," the first published treatise on cryptography. Later, his text "Steganographia" described a cipher in which each letter is represented by words in successive columns of text, designed to hide inconspicuously inside a seemingly pious book of prayer.
Polygraphiae and Steganographia attracted a considerable amount of attention not only for their meticulous analysis of ciphers but more notable for the unexpected thesis of Steganographia's third and final section, which claimed that messages communicated secretly were aided in their transmission by a host of summoned spirits.
As might be expected, Trithemius' works were widely renounced as having magical content - by no means an unfamiliar theme in cryptographic history - and a century later fell victim to the zealous flames of the Inquisition during which they were banned as heretical sorcery.
 | Reproduced with permission from Computer Desktop Encyclopedia. Copyright (c) 1981-2009 The Computer Language Company Inc. All rights reserved. |
Additional Resources
- WS_FTP Professional 12.2 (Windows)
- WS_FTP Professional is quick to install and very easy to use. Transfer files over FTP, SSL, SSH, and HTTP/S transfer protocols. Protect files before, during, and after transfer. Unmatched security is provided through 256-bit AES encryption, FIPS 140-2 validated cryptography, OpenPGP file encryption, and file integrity validation up to SHA-512....
- Software downloads 2009-11-18
- End-to-end encryption is the key to protecting data and reputations
- In order to avoid the financial and brand damage associated with data breaches, businesses need to consider deploying end-to-end encryption as a tamper proof way of securing data. Commentary - Media outlets around the globe highlight new data breaches at an alarmingly regular rate. Forrester estimates that the cost...
- News items 2009-11-11
- Attackers could steal crypto keys from mobile devices
- Nothing New HereThose of us with even just a little knowledge about crypto and security have long known: physical access to the device is crucial. Keep that secure, and you have enabled all your other security measures. Allow physical access to the wrong people and you enable them instead of...
- Discussion threads 2009-10-21
- Safe 1.7 (Mobile)
- Safe allows you to store and organize your sensitive data. Your information is protected with your password by using one of the strongest cryptography available: Strong 256-bit AES encryption from the iPhone. In fact, 256-bit AES has been certified by NSA for government use and TOP SECRET information. This way...
- Software downloads 2009-10-12
- Cryptix 0.76b (Mac)
- Cryptix is a complete solution for cryptography, encoding and ciphers. You can also make numerous tasks and learn more about cryptography... The main interface is divided into 2 parts. One for the cryptography, the other one for the security, containing tools such as (Checksum, Network, Unix). You...
- Software downloads 2009-10-07
- Authentication Mechanisms for Physical Access Control
- The Protocol for Lightweight Authentication of IDentity PLAID is an authentication protocol that uses standards-based symmetric and asymmetric cryptography in a unique way to protect the communications between smart cards and terminal devices. Extremely fast and highly secure strong authentication of the smart card and data objects is possible without...
- White papers 2009-10-01
- Panther Sleek 1.1.0 (Windows)
- Panther Sleek 1.1 has powerful cryptographic features that can keep you and your information secure using the Advanced Encrypt Standard. A new interface, powerful security, and unique approach will put Panther Sleek at the top of the list for cryptography enthusiasts. Panther Sleek is a derivative of the original Panther...
- Software downloads 2009-09-18
- Safe Sphere 2.2.1 (Mac)
- Safe Sphere organizes and saves all your sensitive data like passwords, bank and credit card data, software licences, notes and more in one convenient window. It protects your data with the strongest cryptography available. You choose between one of 5 algorithmns to protect your data. Safe Sphere is plug-in driven....
- Software downloads 2009-09-06
- PHTML Encoder 5.4 (Windows)
- The PHTML Encoder allows encoding PHP scripts before distributing them. The script code is encrypted before saving. Because PHTML Encoder is a cross-platform product, this software working on ALL computer and server platforms which support PHP. The PHTML Encoder includes console and GUI versions of conver. You can use wildcards...
- Software downloads 2009-09-04
- Sagemath 4.1.1 (Windows)
- Sage can be used to study general and advanced, pure and applied mathematics. This includes a huge range of mathematics, including algebra, calculus, elementary to very advanced number theory, cryptography, numerical computation, commutative algebra, group theory, combinatorics, graph theory, exact linear algebra and much more. It combines various software packages...
- Software downloads 2009-08-28
- Cryptix 0.73b (Mac)
- Cryptix is a complete solution for cryptography, encoding and ciphers. You can also make numerous tasks and learn more about cryptography... The main interface is divided into 2 parts. One for the cryptography, the other one for the security, containing tools such as (Checksum, Network, Unix). You...
- Software downloads 2009-08-18
- Tales From the Frontlines: SecureZIP and IBM System z Integrated Cryptographic Services Facility
- PKWARE's SecureZIP leverages the System z hardware and software facilities, regardless of the hardware features enabled in a specific installation. Secured archives ZIP files can be used not only on the platform they were created on, but also any platform that SecureZIP runs on. In addition, SecureZIP maximizes the investment...
- White papers 2009-08-18
- CryptoTE 0.5.390 (Windows)
- CryptoTE is an easy to use text editor with integrated strong cryptography. It is based on the popular Scintilla widget and automatically stores text data in secure encrypted container files. Compared to other "password keeper" programs, CryptoTE does not force any structure upon your data: it works with plain ASCII...
- Software downloads 2009-08-02
- PE Encrypt 7.5 (Mobile)
- is a windows explorer like encryption/decryption tool and a fully integrated file explorer for Pocket PC from Vieka. PE Encrypt is the only explorer with the ability to encrypt and decrypt multiple files on your Pocket PC with extreme security.Now you can encrypt your important documents, passwords, sensitive financial information...
- Software downloads 2009-07-10
- The Transitioning of Cryptographic Algorithms and Key Sizes
- At the beginning of the century, NIST began the task of providing cryptographic key management guidance. This included lessons learned over many years of dealing with key management issues, and attempts to encourage the definition and implementation of appropriate key management procedures, to use algorithms that adequately protect sensitive information,...
- White papers 2009-07-02
- Hackman Suite 9.03 (Windows)
- Hackman is an advanced hex editor, disassembler and template editor. It comes with cryptography capabilities, decoding with ready and self-made algorithms and a fully-featured editor. You can edit virtually any file, disk drive, RAM process, ZIP drive and more with the ease of a word processor. Online Libraries cover every...
- Software downloads 2009-06-30
- Intel Integrated Performance Primitives 6.1 (Windows)
- Intel Integrated Performance Primitives is an extensive library of multicore-ready, highly optimized software functions for digital media and data-processing applications. Intel IPP offers thousands of optimized functions covering frequently-used fundamental algorithms. Deferred Mode Image Processing Framework delivers pipelined parallelism, dramatically improving performance of pipelined image operations, especially on larger images....
- Software downloads 2009-06-23
- Security Threat Mitigation Trends in Low-Cost RFID Systems
- The design and implementation of security threat mitigation mechanisms in RFID systems, specially in low-cost RFID tags, are gaining great attention in both industry and academia. One main focus of research interests is the authentication and privacy techniques to prevent attacks targeting the insecure wireless channel of these systems. Cryptography...
- White papers 2009-06-22
- Public Key Cryptography on RFID Tags: "A Survey on the GPS Identification Scheme"
- In the last few years, a lot of research effort has been made in the area of Radio Frequency Identification RFID technology. The widespread deployment of RFID tags and their increased usage in open environments brought on surface a need for supporting more advanced security features. Applying public-key cryptography constitutes...
- White papers 2009-06-07
- FileWard 1.1.4 (Mac)
- FileWard is a handy tool designed to bring high strength data encryption to Macintosh users. FileWard uses the cryptography libraries of OpenSSL to make six industrial strength encryption ciphers available in an easy to use drag and drop application. FileWard brings convenient high strength encryption to the clipboard allowing you...
- Software downloads 2009-05-08
Neighboring Terms
Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
- The best support in the Linux business
-
If Linux is going to power your mission-critical applications, you'd better have the best support known to business. Novell was rated the top provider of Linux technical support.
- Learn more >>
- The more you simplify, the more you save
-
When you transition from your existing Red Hat environment to SUSE Linux Enterprise from Novell, you can recognize dramatic cost savings, perhaps as much 50%
- Learn more >>
- Keep Up With The Latest In Document Management with The DocuMentor.
-
Doc delivers the scoop on today's enterprise content management, printer maintenance, and all other issues related to document management. It's the DocuMentor Blog.
- Learn more >>
- New Online Dashboard for IT Leaders
-
Read about top issues IT decision-makers face every day, plus get cost-effective solutions to real-life IT problems.
- Learn more >>
- Microsoft Dynamics CRM Online - Free Six-Month Trial for Eligible Organizations
-
Microsoft Dynamics CRM Online provides fast online access, simple contact management and better sales performance for a low monthly cost - the best value on the market today.
- Learn more about the free, six-month trial offer>>
Enterprise Applications
- Check out some of the easiest and most powerful ways to boost productivity while saving money on your application infrastructure. See ZDNet's comprehensive Enterprise Application resource center, now!
- New Online Dashboard
-
- Read about top issues IT decision-makers face every day, plus get cost effective solutions to real life IT problems. Oracle Topline
-
