Public and Private Keys: Understanding Encryption and Security
Public and Private Keys: Understanding Encryption
Public Key
The encryption key is shared publicly with many people. However, only the person or company that created the key can decrypt the information.
Private Key
The creator is the only one who knows how to encode and decode. They can only read or hide the information from those to whom they provide instructions.
Symmetric and Asymmetric Encryption: Main Problems
Symmetric Encryption
- Requires a secure channel for key exchange.
- Does not guarantee authenticity and non-repudiation.
- Each pair (receiver-transmitter) needs a unique “formula” for secure communication.
Asymmetric Encryption
- Has poorer performance compared to symmetric encryption.
What is a Digital Signature?
A digital signature accompanies an item of data and has the following features:
- Confirms the source of the data.
- Ensures that the data has not been modified.
- Prevents denial of origin.
Big Brother in Symmetric Key Digital Signatures
“Big Brother” refers to a central authority that knows everything and in which everyone trusts.
Hash Functions: Definition and Main Objective
A hash algorithm acts as a fingerprint of a message. It generates a small, fixed value (the hash digest) from an input of variable size.
Services Using Digital Signatures Today
- Banking
- Online shopping
Biometrics in Computer Security: Explanation and Examples
Biometrics is primarily used for authentication and identification of users on a network. Examples include magnetic cards, fingerprint scanners, and facial recognition.
Digital Certification: Definition and Current Users
Digital certification is an identification technology that enables electronic transactions of all kinds to be carried out while considering their integrity and preventing information capture. It is used by individuals, companies, governments, and other entities.
What is a Certifying Authority?
A certifying authority is responsible for issuing digital certificates to identify individuals, communities, systems, or other entities that use equipment connected to computer networks.
What is PKI?
PKI (Public Key Infrastructure) is a system that allows the secure transmission of encrypted data using public keys. It is only necessary to know the recipient’s public key for transmission.
What is SSL and Why is it Important?
The SSL (Secure Sockets Layer) protocol operates at the transport layer and is typically used to ensure secure communication between a web server and a client (browser). It provides confidentiality, authentication, and integrity.
What is IPsec and What is its Role?
IPsec (Internet Protocol Security) is a set of protocols that aims to provide authenticity and confidentiality at the network layer. It can identify the origin IP address and encrypt the data field of the datagram. IPsec offers security services transparently to the upper layers.
What is a VPN and What is its Main Function?
A VPN (Virtual Private Network) is a private network implemented over a public network infrastructure. It involves the creation of “tunnels” for the secure transfer of information between corporate networks or remote users.