|
<- Prev Next ->
2. Asymmetric encryption
Some asymmetric encryption algorithms are designed on such way
that it is practically impossible knowing the encryption key to
find out the decryption key (and vice versa). It means that ability
to encrypt document does not mean ability to decrypt it. This fact opens quite
interesting possibility: you can create key pair and distribute
encryption key while keeping decryption key private.
So anyone can send you documents securely, using encryption key, but no one
, but you, would be able to decrypt the it. This method is used in encryption
of e-mails when sender encrypts message using recipient’s public
key (published encryption key) and only recipient can decrypt message
using his privately stored decryption key, usually called private key.
And vice versa - you can distribute decryption key and keep encryption key
private. Message encrypted with encryption key (available to you only) can
be decrypted by anyone who has published decryption key. In simple words -
if that message can be decrypted using that particular key, it means that
it was owned of the complimentary encryption key, who created and encrypted
that message. This method is used in verifying Digital Signatures.
Part of key pair that is kept private called Private Key. Part of key pair
that is publicly available is called Public Key.
Term digital certificate, that you have heard, is an electronic
document that binds some pieces of information together, such as a user's
identity and public key. Certifying Authorities (CA), like Verysign, provide
certificates for companies, businesses and persons.
<- Prev Next ->
|
Energy Secretary fires nuclear security chief apparently for bad information security.
More here.
13 January 2006
No big virus out breaks for long time.
3 January 2006
| 