Mohammad Yousri, profile picture
Uploaded byMohammad Yousri
813 views

The world of encryption

The document provides an overview of encryption, digital signatures, and SSL certificates. It discusses how public key encryption uses a private key and public key to encrypt messages. Digital signatures authenticate the identity of the sender and ensure messages remain intact. SSL certificates allow browsers and servers to establish an encrypted connection by containing a public key and verifying identity with a Certificate Authority. The client's browser verifies the server's certificate with the CA to trust the secure connection.

Embed presentation

Downloaded 72 times
THE WORLD OF ENCRYPTION
ABSTRACT THIS PRESENTATION IS JUST PROVIDING THE BASIC CONCEPTS OF THE DIGITAL CERTIFICATES, AND DIGITAL SIGNATURES WITHOUT PROVIDING ANY TECHNICAL SOLUTION OR PREFERABLE TECHNOLOGIES.
ENCRYPTION Encryption is the conversion of data into a form, called a CIPHER Text. The use of encryption/decryption is as old as the art of communication. Encryption/decryption is especially important in wireless communications. Encryption/decryption is a good idea when carrying out any kind of sensitive transaction. Ex: A credit-card purchase online, or the discussion of a company secret between different departments in the organization.
TYPES OF ENCRYPTION PRIVATE KEY ENCRYPTION means that each computer has a secret key (code) that it can use to encrypt a packet of information before it is sent over the network to the other computer. PUBLIC KEY ENCRYPTION uses a combination of a private key and a public key. The key is based on a hash value. This is a value that is computed from a base input number using a hashing algorithm.
DIGITAL SIGNATURES A DIGITAL SIGNATURE OR DIGITAL SIGNATURE SCHEME IS A MATHEMATICAL SCHEME FOR DEMONSTRATING THE AUTHENTICITY OF A DIGITAL MESSAGE OR DOCUMENT. A DIGITAL SIGNATURE CAN BE USED WITH ANY KIND OF MESSAGE, WHETHER IT IS ENCRYPTED OR NOT, SIMPLY SO THAT THE RECEIVER CAN BE SURE OF THE SENDER'S IDENTITY AND THAT THE MESSAGE ARRIVED INTACT.
CREATION OF DIGITAL SIGNATURES a digital signature scheme typically consists of three algorithms: • hashing algorithm. • signature generation algorithm • a signature verifying algorithm that, given a message, public key and a signature, either accepts or rejects the message's claim to authenticity.
METHODS OF ENCRYPTION BASED ON PRIVACY •a message may be digitally signed, but not encrypted •a message may be encrypted first, then digitally signed •a message may be digitally signed first, then encrypted Encryption scrambles or modifies a message or document so it cannot be read and understood, except by the intended recipient. A key is necessary to reverse the scrambling or modification, to make the message readable.
PREREQUISITES TO CREATE A DIGITAL SIGNATURE • Public-private digital key pair • Certificate Authority. • The public key certificate creates proof of the identity of the signer by using the services of a certificate authority. • A certificate authority uses a variety of processes to associate the particular public key with an individual. • The combination of public key and proof of identity result in a public key certificate - also called a signer's certificate.
HOW IT WORKS?
DIGITAL SIGNATURE VERIFICATION
SECURE SOCKET LAYER (SSL) SSL (Secure Sockets Layer) is a standard security technology for establishing an encrypted link between a server and a client—typically a web server (website) and a browser; or a mail server and a mail client
Where Do Certificates Come In? All browsers have the capability to interact with secured web servers using the SSL protocol. However, the browser and the server need what is called an SSL Certificate to be able to establish a secure connection.
What is an SSL Certificate? How Does it Work? SSL Certificates have a key pair: a public and a private key. These keys work together to establish an encrypted connection. The certificate also contains what is called the “subject,” which is the identity of the certificate/website owner.
How Does it Work? • To get a certificate, you must create a Certificate Signing Request (CSR) on your server. • This process creates a private key and public key on your server. • The CSR data file that you send to the SSL Certificate issuer (called a Certificate Authority or CA) contains the public key. • The CA uses the CSR data file to create a data structure to match your private key without compromising the key itself. The CA never sees the private key.
Certification Authority (CA) •A trusted agent who certifies public keys for general use (Corporation or Bank). –User has to decide which CAs can be trusted. •The model for key certification based on friends and friends of friends is called “Web of Trust”. –The public key is passing from friend to friend. –Works well in small or high connected worlds. –What if you receive a public key from someone you don’t know?
(CA MODEL) TRUST MODEL Root Certificate CA Certificate Browser Cert. CA Certificate Server Cert.
SSL Walkthrough
Client Browser connects to website Web Server Step 1: Client accesses website
Client Server responds with Certificate and key Web Server Step 2: Server responds with Certificate
Client Web Server CA Client verifies certificate with CA Step 3: Client verifies with CA
Client Web Server Random Key Client sends a random key to server encrypted with the public key Step 4: Client sends random key to server
Client Web Server Random Key Step 5: All communications are now encrypted with the Random key
What is the difference between Server Certificate and Client Certificate? How can I differentiate between them? How does IIS distinguish between Client and Server Certificates? Can I use a Server Certificate as a Client Certificate or Vice-Versa?
References https://www.globalsign.com/en/ssl-information-center/what-is-an-ssl-certificate/ https://www.evsslcertificate.com/ssl/description-ssl.html http://www.techtarget.com/ http://www.symantec.com/connect/blogs/client-certificates-vs-server-certificates-what-s-difference http://blogs.msdn.com/b/kaushal/archive/2012/02/18/client-certificates-v-s-server-certificates.aspx http://blogs.msdn.com/b/kaushal/archive/2010/11/05/ssl-certificates.aspx

More Related Content

PPT
Digital certificate & signature
byNetri Chowdhary
 
PPT
Digital Signature
bysaurav5884
 
PDF
Digital Signature
byEvion Technologies
 
PPTX
Digital Signature
bySt Mary's College,Thrissur,Kerala
 
PPTX
Kumkum digital certificate
byKumkum Sharma
 
PPTX
Digital signature & certificate
byNetGains Technologies Pvt. Ltd.
 
PDF
Digital certificates & its importance
bysvm
 
PPTX
Digital signature
byJanani S
 
Digital certificate & signature
byNetri Chowdhary
 
Digital Signature
bysaurav5884
 
Digital Signature
byEvion Technologies
 
Digital Signature
bySt Mary's College,Thrissur,Kerala
 
Kumkum digital certificate
byKumkum Sharma
 
Digital signature & certificate
byNetGains Technologies Pvt. Ltd.
 
Digital certificates & its importance
bysvm
 
Digital signature
byJanani S
 

What's hot

PPT
Digital Certificate
bySumant Diwakar
 
PPT
Cryptography Simplified - Symmetric Key, Public Key, PKI, Digital Signature, ...
byMuhammad Faisal Naqvi, CISSP, CISA, AMBCI, ITIL, ISMS LA n Master
 
PPTX
How to design a digital signature in odoo
byPlanetOdoo
 
PPTX
Digital Signature ppt
byOECLIB Odisha Electronics Control Library
 
PPTX
Digital Signatures
bySumanth Paramesh
 
PPT
Digital certificates
bySheetal Verma
 
PPTX
Cryptography
byTanviGogri
 
PPTX
Digital signatures
byReachLocal Services India
 
PPT
Digital signature introduction
byAsim Neupane
 
PPT
Digital signature
by9799907840kd
 
PDF
Pki and OpenSSL
byTony Fabeen
 
PPTX
Digital Signature
byJonathon Dosh
 
PDF
Hyperledger Indy Platform - Privacy, Security and Power for Digital Identity ...
byGokul Alex
 
PPTX
kerberos
bysameer farooq
 
PPT
as2 concepts
bylittlefoxcommunications
 
PPT
Marco Casassa Mont: Pki overview
byInformation Security Awareness Group
 
PPTX
Digital signatures and e-Commerce
byNaveen Jakhar, I.T.S
 
PPT
SSl and certificates
byNetri Chowdhary
 
PPTX
Let's get started with passwordless authentication using windows hello in you...
byChris Ryu
 
PPT
Digital Signiture
byVikesh Bawane
 
Digital Certificate
bySumant Diwakar
 
Cryptography Simplified - Symmetric Key, Public Key, PKI, Digital Signature, ...
byMuhammad Faisal Naqvi, CISSP, CISA, AMBCI, ITIL, ISMS LA n Master
 
How to design a digital signature in odoo
byPlanetOdoo
 
Digital Signature ppt
byOECLIB Odisha Electronics Control Library
 
Digital Signatures
bySumanth Paramesh
 
Digital certificates
bySheetal Verma
 
Cryptography
byTanviGogri
 
Digital signatures
byReachLocal Services India
 
Digital signature introduction
byAsim Neupane
 
Digital signature
by9799907840kd
 
Pki and OpenSSL
byTony Fabeen
 
Digital Signature
byJonathon Dosh
 
Hyperledger Indy Platform - Privacy, Security and Power for Digital Identity ...
byGokul Alex
 
kerberos
bysameer farooq
 
as2 concepts
bylittlefoxcommunications
 
Marco Casassa Mont: Pki overview
byInformation Security Awareness Group
 
Digital signatures and e-Commerce
byNaveen Jakhar, I.T.S
 
SSl and certificates
byNetri Chowdhary
 
Let's get started with passwordless authentication using windows hello in you...
byChris Ryu
 
Digital Signiture
byVikesh Bawane
 

Viewers also liked

PDF
Hacking Journalism: Using the Internet to Save the World
byDaniel Schultz
 
PDF
Advanced Web Hacking (EUSecWest 06)
byShreeraj Shah
 
PPTX
Cryptography.ppt
bykusum sharma
 
ODP
Encryption presentation final
byadrigee12
 
PPTX
M tech2
byvinodkumar K
 
PPTX
Claims Based Authentication A Beginners Guide
byPhuong Nguyen
 
PDF
Understanding Claim based Authentication
byMohammad Yousri
 
PDF
Webinar Gratuito: "JavaScript para Hacking Web"
byAlonso Eduardo Caballero Quezada
 
PPTX
C3 and digital citizenship
byJuliaHoesingVanderMolen
 
PDF
y3dips hacking priv8 network
byidsecconf
 
PPTX
What The Heck Is Hacking?
byLars Zimmermann
 
PDF
Advanced growth hacking
byVasil Azarov
 
PDF
2010: A Web Hacking Odyssey - Top Ten Hacks of the Year
byJeremiah Grossman
 
PPT
Hacking web applications
byphanleson
 
PPTX
Travel Hacking 101
bynbuchan1
 
PPTX
Ethical Hacking
byDEEPIKA WALIA
 
PPTX
Web Hacking Series Part 1
byAditya Kamat
 
PPTX
Website Hacking and Preventive Measures
byShubham Takode
 
PDF
The power of Structured Journalism & Hacker Culture in NPR
byPoderomedia
 
PDF
Top Ten Web Hacking Techniques (2008)
byJeremiah Grossman
 
Hacking Journalism: Using the Internet to Save the World
byDaniel Schultz
 
Advanced Web Hacking (EUSecWest 06)
byShreeraj Shah
 
Cryptography.ppt
bykusum sharma
 
Encryption presentation final
byadrigee12
 
M tech2
byvinodkumar K
 
Claims Based Authentication A Beginners Guide
byPhuong Nguyen
 
Understanding Claim based Authentication
byMohammad Yousri
 
Webinar Gratuito: "JavaScript para Hacking Web"
byAlonso Eduardo Caballero Quezada
 
C3 and digital citizenship
byJuliaHoesingVanderMolen
 
y3dips hacking priv8 network
byidsecconf
 
What The Heck Is Hacking?
byLars Zimmermann
 
Advanced growth hacking
byVasil Azarov
 
2010: A Web Hacking Odyssey - Top Ten Hacks of the Year
byJeremiah Grossman
 
Hacking web applications
byphanleson
 
Travel Hacking 101
bynbuchan1
 
Ethical Hacking
byDEEPIKA WALIA
 
Web Hacking Series Part 1
byAditya Kamat
 
Website Hacking and Preventive Measures
byShubham Takode
 
The power of Structured Journalism & Hacker Culture in NPR
byPoderomedia
 
Top Ten Web Hacking Techniques (2008)
byJeremiah Grossman
 

Similar to The world of encryption

ODP
Inro to Secure Sockets Layer: SSL
byDipankar Achinta
 
PPTX
https://www.slideshare.net/slideshow/computing-assessment-criteria-y8-3564449...
byanishjepron2
 
DOC
Demonstration of secure socket layer(synopsis)
byMumbai Academisc
 
PDF
Introduction of an SSL Certificate
byCheapSSLUSA
 
PPT
PKI and Applications
bySvetlin Nakov
 
PDF
Details about the SSL Certificate
byCheapSSLUSA
 
PPT
PKI_Applications digital certificate.ppt
byubaidullah75790
 
PPT
Public Key Infrastructure and Application_Applications.ppt
bylanhuongvernon
 
PDF
Understanding Digital Certificates & Secure Sockets Layer
byCheapSSLUSA
 
PDF
SSLtalk
byMatthew Aylard
 
PPT
Presentation on digital signatures & digital certificates
byVivaka Nand
 
PPTX
Impact of digital certificate in network security
byrhassan84
 
PPTX
Impact of digital certificate in network security
byrhassan84
 
PPTX
Encryption in Cryptography
byUttara University
 
PPTX
Certificate pinning in android applications
byArash Ramez
 
PPTX
Secure socket layer
byBU
 
PPT
Ch12 Cryptographic Protocols and Public Key Infrastructure
byInformation Technology
 
PPT
Ssl Https Server
byRam Srivastava
 
PPT
Certificates and Web of Trust
byYousof Alsatom
 
PPT
Pki the key to securing sensitive communications
byNicholas Davis
 
Inro to Secure Sockets Layer: SSL
byDipankar Achinta
 
https://www.slideshare.net/slideshow/computing-assessment-criteria-y8-3564449...
byanishjepron2
 
Demonstration of secure socket layer(synopsis)
byMumbai Academisc
 
Introduction of an SSL Certificate
byCheapSSLUSA
 
PKI and Applications
bySvetlin Nakov
 
Details about the SSL Certificate
byCheapSSLUSA
 
PKI_Applications digital certificate.ppt
byubaidullah75790
 
Public Key Infrastructure and Application_Applications.ppt
bylanhuongvernon
 
Understanding Digital Certificates & Secure Sockets Layer
byCheapSSLUSA
 
SSLtalk
byMatthew Aylard
 
Presentation on digital signatures & digital certificates
byVivaka Nand
 
Impact of digital certificate in network security
byrhassan84
 
Impact of digital certificate in network security
byrhassan84
 
Encryption in Cryptography
byUttara University
 
Certificate pinning in android applications
byArash Ramez
 
Secure socket layer
byBU
 
Ch12 Cryptographic Protocols and Public Key Infrastructure
byInformation Technology
 
Ssl Https Server
byRam Srivastava
 
Certificates and Web of Trust
byYousof Alsatom
 
Pki the key to securing sensitive communications
byNicholas Davis
 

Recently uploaded

PDF
JFokus 2026 - Please pass the salt- Serve up passwords with a side of entropy...
byOrtus Solutions, Corp
 
PDF
Animated Safety Induction: A Smarter Way to Onboard for Workplace Safety
byTECH EHS Solution
 
PDF
MySQL Routing Guidelines: Designing Smarter Query Routing Together
byMiguel Araújo
 
PDF
Metrics, Logs, Traces, and Mayhem_ Introducing an observability adventure gam...
byImma Valls Bernaus
 
PDF
Massage Booking App Development Company
byV3CUBE TECHNOLABS
 
PPTX
GraphQL Day Paris 2025 | Bringing DevOps to GraphQL with the Apollo GraphOS O...
byapidays
 
PPTX
Chapter Two Logic and Language - Copy.pptx
byGediyonBelay
 
PDF
Ready, Set, REST! Introducing MySQL's Built-In REST Service
byMiguel Araújo
 
PPTX
Connecting to MCP Servers in OutSystems Platform
byOzanCali
 
PDF
eresource Xcel ERP for Maunfacturing - Best Manufacturing ERP for SME
byeresource Infotech Pvt.Ltd
 
PPTX
Pitch Deck for MEVIA OS - No Apps, Infinite, Decentralized Operating System
byDr. Edwin Hernandez
 
PPTX
Best Digital Marketing Company in Lucknow
bydigitallearning9277
 
PDF
Ontwikkel sneller en veiliger met GitHub Copilot
byDelta-N
 
PDF
Lost Android Phone Recovery_ Steps That Work Fast.pdf
byIsabella Reed
 
PDF
Langchain4J – An Introduction for Impatient Developers
byJuarez Junior
 
PDF
Ecommerce Website Development Services - Web Panel Solutions.pdf
byWEB PANEL SOLUTIONS
 
PDF
Routing Guidelines: Unlocking Smarter Query Routing in MySQL Architectures
byMiguel Araújo
 
PDF
Research-Driven Development: Navigating the Generative Era in Software
byCadabra Studio
 
PDF
SAP ERP to SAP S_4HANA Cloud Private Edition Delta Scope
bychuck78
 
PDF
Complete iOS Delivery App Features & Admin Tools
byShiv Technolabs Pvt. Ltd.
 
JFokus 2026 - Please pass the salt- Serve up passwords with a side of entropy...
byOrtus Solutions, Corp
 
Animated Safety Induction: A Smarter Way to Onboard for Workplace Safety
byTECH EHS Solution
 
MySQL Routing Guidelines: Designing Smarter Query Routing Together
byMiguel Araújo
 
Metrics, Logs, Traces, and Mayhem_ Introducing an observability adventure gam...
byImma Valls Bernaus
 
Massage Booking App Development Company
byV3CUBE TECHNOLABS
 
GraphQL Day Paris 2025 | Bringing DevOps to GraphQL with the Apollo GraphOS O...
byapidays
 
Chapter Two Logic and Language - Copy.pptx
byGediyonBelay
 
Ready, Set, REST! Introducing MySQL's Built-In REST Service
byMiguel Araújo
 
Connecting to MCP Servers in OutSystems Platform
byOzanCali
 
eresource Xcel ERP for Maunfacturing - Best Manufacturing ERP for SME
byeresource Infotech Pvt.Ltd
 
Pitch Deck for MEVIA OS - No Apps, Infinite, Decentralized Operating System
byDr. Edwin Hernandez
 
Best Digital Marketing Company in Lucknow
bydigitallearning9277
 
Ontwikkel sneller en veiliger met GitHub Copilot
byDelta-N
 
Lost Android Phone Recovery_ Steps That Work Fast.pdf
byIsabella Reed
 
Langchain4J – An Introduction for Impatient Developers
byJuarez Junior
 
Ecommerce Website Development Services - Web Panel Solutions.pdf
byWEB PANEL SOLUTIONS
 
Routing Guidelines: Unlocking Smarter Query Routing in MySQL Architectures
byMiguel Araújo
 
Research-Driven Development: Navigating the Generative Era in Software
byCadabra Studio
 
SAP ERP to SAP S_4HANA Cloud Private Edition Delta Scope
bychuck78
 
Complete iOS Delivery App Features & Admin Tools
byShiv Technolabs Pvt. Ltd.
 

The world of encryption

  • 1.
  • 2.
    ABSTRACT THIS PRESENTATION ISJUST PROVIDING THE BASIC CONCEPTS OF THE DIGITAL CERTIFICATES, AND DIGITAL SIGNATURES WITHOUT PROVIDING ANY TECHNICAL SOLUTION OR PREFERABLE TECHNOLOGIES.
  • 3.
    ENCRYPTION Encryption is theconversion of data into a form, called a CIPHER Text. The use of encryption/decryption is as old as the art of communication. Encryption/decryption is especially important in wireless communications. Encryption/decryption is a good idea when carrying out any kind of sensitive transaction. Ex: A credit-card purchase online, or the discussion of a company secret between different departments in the organization.
  • 4.
    TYPES OF ENCRYPTION PRIVATEKEY ENCRYPTION means that each computer has a secret key (code) that it can use to encrypt a packet of information before it is sent over the network to the other computer. PUBLIC KEY ENCRYPTION uses a combination of a private key and a public key. The key is based on a hash value. This is a value that is computed from a base input number using a hashing algorithm.
  • 5.
    DIGITAL SIGNATURES A DIGITALSIGNATURE OR DIGITAL SIGNATURE SCHEME IS A MATHEMATICAL SCHEME FOR DEMONSTRATING THE AUTHENTICITY OF A DIGITAL MESSAGE OR DOCUMENT. A DIGITAL SIGNATURE CAN BE USED WITH ANY KIND OF MESSAGE, WHETHER IT IS ENCRYPTED OR NOT, SIMPLY SO THAT THE RECEIVER CAN BE SURE OF THE SENDER'S IDENTITY AND THAT THE MESSAGE ARRIVED INTACT.
  • 6.
    CREATION OF DIGITALSIGNATURES a digital signature scheme typically consists of three algorithms: • hashing algorithm. • signature generation algorithm • a signature verifying algorithm that, given a message, public key and a signature, either accepts or rejects the message's claim to authenticity.
  • 7.
    METHODS OF ENCRYPTIONBASED ON PRIVACY •a message may be digitally signed, but not encrypted •a message may be encrypted first, then digitally signed •a message may be digitally signed first, then encrypted Encryption scrambles or modifies a message or document so it cannot be read and understood, except by the intended recipient. A key is necessary to reverse the scrambling or modification, to make the message readable.
  • 8.
    PREREQUISITES TO CREATEA DIGITAL SIGNATURE • Public-private digital key pair • Certificate Authority. • The public key certificate creates proof of the identity of the signer by using the services of a certificate authority. • A certificate authority uses a variety of processes to associate the particular public key with an individual. • The combination of public key and proof of identity result in a public key certificate - also called a signer's certificate.
  • 9.
  • 10.
  • 11.
    SECURE SOCKET LAYER(SSL) SSL (Secure Sockets Layer) is a standard security technology for establishing an encrypted link between a server and a client—typically a web server (website) and a browser; or a mail server and a mail client
  • 12.
    Where Do CertificatesCome In? All browsers have the capability to interact with secured web servers using the SSL protocol. However, the browser and the server need what is called an SSL Certificate to be able to establish a secure connection.
  • 13.
    What is anSSL Certificate? How Does it Work? SSL Certificates have a key pair: a public and a private key. These keys work together to establish an encrypted connection. The certificate also contains what is called the “subject,” which is the identity of the certificate/website owner.
  • 14.
    How Does itWork? • To get a certificate, you must create a Certificate Signing Request (CSR) on your server. • This process creates a private key and public key on your server. • The CSR data file that you send to the SSL Certificate issuer (called a Certificate Authority or CA) contains the public key. • The CA uses the CSR data file to create a data structure to match your private key without compromising the key itself. The CA never sees the private key.
  • 15.
    Certification Authority (CA) •Atrusted agent who certifies public keys for general use (Corporation or Bank). –User has to decide which CAs can be trusted. •The model for key certification based on friends and friends of friends is called “Web of Trust”. –The public key is passing from friend to friend. –Works well in small or high connected worlds. –What if you receive a public key from someone you don’t know?
  • 16.
    (CA MODEL) TRUSTMODEL Root Certificate CA Certificate Browser Cert. CA Certificate Server Cert.
  • 17.
  • 18.
    Client Browser connects towebsite Web Server Step 1: Client accesses website
  • 19.
    Client Server responds withCertificate and key Web Server Step 2: Server responds with Certificate
  • 20.
    Client Web Server CA Clientverifies certificate with CA Step 3: Client verifies with CA
  • 21.
    Client Web Server Random Key Clientsends a random key to server encrypted with the public key Step 4: Client sends random key to server
  • 22.
    Client Web Server Random Key Step5: All communications are now encrypted with the Random key
  • 23.
    What is thedifference between Server Certificate and Client Certificate? How can I differentiate between them? How does IIS distinguish between Client and Server Certificates? Can I use a Server Certificate as a Client Certificate or Vice-Versa?
  • 24.

Editor's Notes

  • #4 Symmetric Encryption Symmetric encryption is the oldest and best-known technique. A secret key, which can be a number, a word, or just a string of random letters, is applied to the text of a message to change the content in a particular way. This might be as simple as shifting each letter by a number of places in the alphabet. As long as both sender and recipient know the secret key, they can encrypt and decrypt all messages that use this key. Asymmetric Encryption The problem with secret keys is exchanging them over the Internet or a large network while preventing them from falling into the wrong hands. Anyone who knows the secret key can decrypt the message. One answer is asymmetric encryption, in which there are two related keys--a key pair. A public key is made freely available to anyone who might want to send you a message. A second, private key is kept secret, so that only you know it.  Any message (text, binary files, or documents) that are encrypted by using the public key can only be decrypted by applying the same algorithm, but by using the matching private key. Any message that is encrypted by using the private key can only be decrypted by using the matching public key.  This means that you do not have to worry about passing public keys over the Internet (the keys are supposed to be public). A problem with asymmetric encryption, however, is that it is slower than symmetric encryption. It requires far more processing power to both encrypt and decrypt the content of the message.
  • #5 Public Key cryptography also known as asymmetric cryptography, is a class of cryptographic algorithms which requires two separate keys, one of which is secret (or private) and one of which is public. Although different, the two parts of this key pair are mathematically linked. The public key is used to encrypt plaintext or to verify a digital signature; whereas the private key is used to decrypt ciphertext or to create a digital signature. The term "asymmetric" stems from the use of different keys to perform these opposite functions, each the inverse of the other – as contrasted with conventional ("symmetric") cryptography which relies on the same key to perform both, Public-key encryption, in which a message is encrypted with a recipient's public key. The message cannot be decrypted by anyone who does not possess the matching private key, who is thus presumed to be the owner of that key and the person associated with the public key. This is used in an attempt to ensure confidentiality.
  • #10 Digital signatures are based on public key cryptography, also known as asymmetric cryptography. Using a public key algorithm such as RSA, one can generate two keys that are mathematically linked: one private and one public. To create a digital signature, signing software (such as an email program) creates a one-way hash of the electronic data to be signed. The private key is then used to encrypt the hash. The encrypted hash -- along with other information, such as the hashing algorithm -- is the digital signature. The reason for encrypting the hash instead of the entire message or document is that a hash function can convert an arbitrary input into a fixed length value, which is usually much shorter. This saves time since hashing is much faster than signing.