Word of the Day: private key (secret key)

Word of the Day Daily updates on the latest technology terms |March 8, 2018

private key (secret key) In cryptography, a private key (secret key) is a variable that is used with an algorithm to encrypt and decrypt code. Quality encryption always follows a fundamental rule: the algorithm doesn't need to be kept secret, but the key does. Private keys play important roles in both symmetric and asymmetric cryptography. Most cryptographic processes use symmetric encryption to encrypt data transmissions but use asymmetric encryption to encrypt and exchange the secret key. Symmetric encryption, also known as private key encryption, uses the same private key for both encryption and decryption. The risk in this system is that if either party loses the key or the key is intercepted, the system is broken and messages cannot be exchanged securely. Asymmetric cryptography, also known as public key encryption, uses two different but mathematically linked keys. The complexity and length of the private key determine how feasible it is for an interloper to carry out a brute force attack and try out different keys until the right one is found. The challenge for this system is that significant computing resources are required to create long, strong private keys. Secret-key ciphers generally fall into one of two categories: stream ciphers or block ciphers. A block cipher applies a private key and algorithm to a block of data simultaneously, whereas a stream cipher applies the key and algorithm one bit at a time. Symmetric-key encryption is much faster computationally than asymmetric encryption but requires a key exchange. Quote of the Day "Because anyone who steals a private key can sign executable code that would then be successfully verified by the electronic device, that key must remain secure." - Ellen Muraskin   Trending Terms secret key algorithm asymmetric cryptography brute force cracking stream cipher block cipher key exchange   Learning Center 23,000 Symantec certificates revoked following leak of private keys DigiCert had more than 20,000 Symantec certificates revoked after reseller partner Trustico exposed the certificates' private keys. Risk & Repeat: Trustico certificate drama a cause for concern This Risk & Repeat podcast discusses the recent Trustico certificate drama, the massive certificate revocation it triggered and the questions it raises. ROCA RSA flaw unveils secret keys on wide range of devices The ROCA RSA vulnerability takes advantage of poor implementation by Infineon to undermine the security of encryption keys, affecting some popular products. Embedded security for IoT lies in the chip Embedded security for IoT gives connected devices the smarts they need to recognize rogue data or instructions before they execute. Private encryption key sharing worrying but not new, say security experts A study has revealed a 40% increase in the past year in the number of internet-connected devices using shared encryption certificates, highlighting that this security risk of mass hacking is growing. Writing for Business Many organizations don't give encryption a thought until they suffer a data _______. a. breach b. breech Answer   Stay In Touch For feedback about any of our definitions or to suggest a new definition, please contact me at: mrouse@techtarget.com   Visit the Word of the Day Archives and catch up on what you've missed!   FOLLOW US About This E-Newsletter This e-newsletter is published by the TechTarget network. To unsubscribe from Whatis.com, click here. Please note, this will not affect any other subscriptions you have signed up for. TechTarget, Whatis, 275 Grove Street, Newton, MA 02466. Contact: webmaster@techtarget.com Copyright 2018 TechTarget. All rights reserved.