Secret-key systems

Public-key systems

Session keys
I sistemi a chiavi pubbliche Cifragem à chave privada (ou chave secreta) Systeme mit öffentlichen Schlüsseln Les systèmes à clé publiques Sistemas de clave pública

the principle of public-key encryption

The principle of asymmetric encryption (also called public-key encryption) first appeared in 1976, with the publication of a work about cryptography by Whitfield Diffie and Martin Hellman.

In an asymmetric cryptosystem (or public-key cryptosystem), keys exists in pairs:

  • A public key for encryption;
  • A secret key for decryption.

In a public-key encryption system, users choose a random key that only they know (this is the private key). From this key, they each automatically deduce an algorithm (this is the public key). Users exchange this public key over an insecure channel.

When a user wants to send a message to another user, he simply needs to encrypt the message to be sent using the recipient's public key (which he can find, for example, in a key server such as an LDAP directory). The latter will be capable of decrypting the message with his private key (that only he knows).

overview of a public-key encryption

This system is based on a function that is easy to compute in one direction (called a one-way trapdoor function) and is mathematically extremely hard to invert without the private key (called the trapdoor).

To put this in images, this means having a user randomly create a small metal key (the private key) and then produce a large number of padlocks (public keys) he keeps in a locker that can be accessed by anyone (the locker plays the role of an insecure channel). To send him a document, each user can take an (open) padlock, close a portfolio containing the document with this padlock, then send the portfolio to the owner of the public key (the padlock's owner). Only the owner will be capable of opening the portfolio with his private key.

Advantages and disadvantages

The problem of communicating the decryption key no longer exists, in that public keys can be sent freely. Public-key encryption therefore lets people exchange encrypted messages without having a shared secret.

On the other hand, the challenge involves making sure the public key you recover actually belongs to the person you want to send the encrypted information to!

Last update on Thursday October 16, 2008 02:43:18 PM.This document entitled « Public-key systems » from Kioskea (en.kioskea.net) is made available under the Creative Commons license. You can copy, modify copies of this page, under the conditions stipulated by the licence, as this note appears clearly.

Best answers for « Public key systems » in :
PKI - Public key infrastructure Show What is a PKI? PKI (Public Key Infrastructure) refers to the group of technical solutions based on public-key cryptography. Public-key cryptosystems make it possible to bypass the need to systematically use a secure channel to exchange keys....
Session keys Show Advantages of a session key Asymmetric algorithms (which come into play in public-key cryptosystems) make it possible to eliminate problems related to key sharing via a secure channel. However, they remain much less effective (in terms of...
Private-key (or secret-key) cryptography Show Symmetric encryption Symmetric encryption (also called private-key encryption or secret-key encryption) involves using the same key for encryption and decryption. Encryption involves applying an operation (an algorithm) to the data to be...
GnuPG : key commands ShowGnuPG : key commands Storage keyring Public Key servers Below is a list of main commands for operating GnuPG Generate double keys: gpg --gen-key List available keys: gpg --list-keys Exporting your public key: gpg --armor -...
[Debian] Apt-get : NO_PUBKEY / GPG error Show[Debian] Apt-get : NO_PUBKEY / GPG error When updating the Debian based system, it may happens that the apt-get displays an error message like: W: GPG error: ftp://ftp.debian.org/ testing Release: The following signatures couldn't be...
Disk boot failure - Insert system disk and press Enter ShowDisk boot failure - Insert system disk and press Enter A new hard drive was installed The hard drive is unplugged Corrupted system files Damaged disk If it happens that you are prompted by the following error message "DISK BOOT...
Download Access Lock Ixis Ltd ShowAccess Lock is a software to protect the system. Easy to use, you simply define your configuration, password and double click its icon. When the software is locked, the key system and task bar are disabled while the mouse cursor is immobilized. In...
Download AutoKrypt Show
Download Microsoft Office Publisher Show
Introduction to encryption with DES ShowDES, secret-key decryption On 15 May 1973, the NBS (National Bureau of Standards, now called NIST - National Institute of Standards and Technology) published a request in the Federal Register for an encryption algorithm that would meet the...
PGP - Pretty Good Privacy ShowIntroduction to PGP PGP (Pretty Good Privacy) is a cryptosystem (encryption system) that was invented by Philip Zimmermann, a computer analyst. From 1984 to 1991, Philip Zimmermann worked on a program that made it possible to run RSA on personal...
Encryption with RSA Showthe RSA system The first public-key encryption (asymmetric encryption) algorithm was developed by R.Merckle and M.Hellman in 1977. It was quickly made obsolete thanks to the work of Shamir, Zippel and Herlestman, famous cryptanalysts. In 1978, the...
They need your help