SettingsKey management
40-bit encryption
40-bit encryption refers to a key size of forty bits, or five bytes, for symmetric encryption; this represents a relatively low level of security.
40-bit encryption refers to a key size of forty bits, or five bytes, for symmetric encryption; this represents a relatively low level of security.
56-bit encryption
In computing, 56-bit encryption refers to a key size of fifty-six bits, or seven bytes, for symmetric encryption.
In computing, 56-bit encryption refers to a key size of fifty-six bits, or seven bytes, for symmetric encryption.
AACS encryption key controversy
A controversy surrounding the AACS cryptographic key arose in April 2007 when the Motion Picture Association of America and the Advanced Access Content System Licensing Administrator, LLC began ...
A controversy surrounding the AACS cryptographic key arose in April 2007 when the Motion Picture Association of America and the Advanced Access Content System Licensing Administrator, LLC began ...
AN/CYZ-10
The AN/CYZ-10 Data Transfer Device, often called a Filler, Crazy 10, ANCD or DTD, is a United States National Security Agency-developed, portable, hand-held fill device, ...
The AN/CYZ-10 Data Transfer Device, often called a Filler, Crazy 10, ANCD or DTD, is a United States National Security Agency-developed, portable, hand-held fill device, ...
AN/PYQ-10
The AN/PYQ-10 Simple Key Loader is a ruggedized, portable, hand-held fill device, for securely receiving, storing, and transferring data between compatible cryptographic and communications equipment.
The AN/PYQ-10 Simple Key Loader is a ruggedized, portable, hand-held fill device, for securely receiving, storing, and transferring data between compatible cryptographic and communications equipment.
ASC X9
The Accredited Standards Committee X9 (ASC X9, Inc.) - Financial Industry Global Standards, mission is to develop, establish, maintain, and promote standards for the Financial Services Industry...
The Accredited Standards Committee X9 (ASC X9, Inc.) - Financial Industry Global Standards, mission is to develop, establish, maintain, and promote standards for the Financial Services Industry...
CA/Browser Forum
The Certification Authority Browser Forum, also known as CA/Browser Forum, is a voluntary consortium of certification authorities and browser industry leaders that created the SSL certificates, ...
The Certification Authority Browser Forum, also known as CA/Browser Forum, is a voluntary consortium of certification authorities and browser industry leaders that created the SSL certificates, ...
CCMP
Counter Mode with Cipher Block Chaining Message Authentication Code Protocol or CCMP is an encryption protocol designed for Wireless LAN products that implement the standards of the IEEE 8...
Counter Mode with Cipher Block Chaining Message Authentication Code Protocol or CCMP is an encryption protocol designed for Wireless LAN products that implement the standards of the IEEE 8...
CDMF
In cryptography, CDMF (Commercial Data Masking Facility) is an algorithm developed at IBM in 1992 to reduce the security strength of the DES cipher to that of 40-bit encryption, at the tim...
In cryptography, CDMF (Commercial Data Masking Facility) is an algorithm developed at IBM in 1992 to reduce the security strength of the DES cipher to that of 40-bit encryption, at the tim...
Certificate authority
In cryptography, a certificate authority, or certification authority, is an entity that issues digital certificates.
In cryptography, a certificate authority, or certification authority, is an entity that issues digital certificates.
Certificate policy
A certificate policy is a document which aims to state what are the different actors of a public key infrastructure, their roles and their duties.
A certificate policy is a document which aims to state what are the different actors of a public key infrastructure, their roles and their duties.
Certificate server
Certificate servers validate, or certify, keys as part of a Public key infrastructure.
Certificate servers validate, or certify, keys as part of a Public key infrastructure.
Certification Practice Statement
A Certification Practice Statement is a document from a Certificate Authority or a member of a web of trust which describes their practice for issuing and managing public key certificates.
A Certification Practice Statement is a document from a Certificate Authority or a member of a web of trust which describes their practice for issuing and managing public key certificates.
Computational trust
In Information security, computational trust is the generation of trusted authorities or user trust through cryptography.
In Information security, computational trust is the generation of trusted authorities or user trust through cryptography.
Cryptographic key types
One of the most important aspects of any cryptographic system is key management; it is also the aspect which is most often neglected.
One of the most important aspects of any cryptographic system is key management; it is also the aspect which is most often neglected.
Cryptoperiod
A cryptoperiod is the time span during which a specific cryptographic key is authorized for use.
A cryptoperiod is the time span during which a specific cryptographic key is authorized for use.
Derived unique key per transaction
In cryptography, Derived Unique Key Per Transaction (DUKPT) is a key management scheme in which for every transaction, a unique key is used which is derived from a fixed key.
In cryptography, Derived Unique Key Per Transaction (DUKPT) is a key management scheme in which for every transaction, a unique key is used which is derived from a fixed key.
Digital signature
A digital signature or digital signature scheme is a mathematical scheme for demonstrating the authenticity of a digital message or document.
A digital signature or digital signature scheme is a mathematical scheme for demonstrating the authenticity of a digital message or document.
Domain Name System Security Extensions
The Domain Name System Security Extensions is a suite of Internet Engineering Task Force specifications for securing certain kinds of information provided by the Domain Name System as used on In...
The Domain Name System Security Extensions is a suite of Internet Engineering Task Force specifications for securing certain kinds of information provided by the Domain Name System as used on In...
Ephemeral key
A cryptographic key is called ephemeral if it is generated for each execution of a key establishment process.
A cryptographic key is called ephemeral if it is generated for each execution of a key establishment process.
Extended Validation Certificate
An Extended Validation Certificate (EV) is an X.509 public key certificate issued according to a specific set of identity verification criteria.
An Extended Validation Certificate (EV) is an X.509 public key certificate issued according to a specific set of identity verification criteria.
Fill device
A fill device is an electronic module used to load cryptographic keys into electronic encryption machines.
A fill device is an electronic module used to load cryptographic keys into electronic encryption machines.
Glossary of cryptographic keys
* 40-bit key - key with a length of 40 bits, once the upper limit of what could be exported from the U.S. and other countries without a license.
* 40-bit key - key with a length of 40 bits, once the upper limit of what could be exported from the U.S. and other countries without a license.
Internet Security Association and Key Management Protocol
ISAKMP (Internet Security Association and Key Management Protocol) is a protocol defined by RFC 2408 for establishing Security Associations (SA) a...
ISAKMP (Internet Security Association and Key Management Protocol) is a protocol defined by RFC 2408 for establishing Security Associations (SA) a...
Jumbleme (digital encryption service)
JumbleMe.com is an online email encryption service which protects electronically transmitted information.
JumbleMe.com is an online email encryption service which protects electronically transmitted information.
KAME project
The KAME project was a joint effort of six organizations in Japan which aimed to provide a free IPv6 and IPsec (for both IPv4 and IPv6) protocol stack implementation for variants of the BSD Unix...
The KAME project was a joint effort of six organizations in Japan which aimed to provide a free IPv6 and IPsec (for both IPv4 and IPv6) protocol stack implementation for variants of the BSD Unix...
Key (cryptography)
In cryptography, a key is a piece of information that determines the functional output of a cryptographic algorithm or cipher.
In cryptography, a key is a piece of information that determines the functional output of a cryptographic algorithm or cipher.
Key authentication
Key authentication is a problem that arises when using public key cryptography.
Key authentication is a problem that arises when using public key cryptography.
Key Ceremony
At the heart of every certificate authority or certification authority (CA) is at least one Root Key(s) or Root Certificate(s) and usually, at least one Intermediate Root Certificate(s).
At the heart of every certificate authority or certification authority (CA) is at least one Root Key(s) or Root Certificate(s) and usually, at least one Intermediate Root Certificate(s).
Key clustering
In cryptography, key clustering is said to occur when two different keys generate the same ciphertext from the same plaintext, using the same cipher algorithm.
In cryptography, key clustering is said to occur when two different keys generate the same ciphertext from the same plaintext, using the same cipher algorithm.
Key derivation function
In cryptography, a key derivation function derives one or more secret keys from a secret value such as a master key or other known information such as a password or passphrase using a pseudo-ran...
In cryptography, a key derivation function derives one or more secret keys from a secret value such as a master key or other known information such as a password or passphrase using a pseudo-ran...
Key distribution
Key distribution is an important issue in wireless sensor network (WSN) design.
Key distribution is an important issue in wireless sensor network (WSN) design.
Key distribution center
In cryptography, a key distribution center is part of a cryptosystem intended to reduce the risks inherent in exchanging keys.
In cryptography, a key distribution center is part of a cryptosystem intended to reduce the risks inherent in exchanging keys.
Key encapsulation
Key encapsulation mechanisms are a class of encryption techniques designed to secure symmetric cryptographic key material for transmission using asymmetric algorithms.
Key encapsulation mechanisms are a class of encryption techniques designed to secure symmetric cryptographic key material for transmission using asymmetric algorithms.
Key escrow
Key escrow is an arrangement in which the keys needed to decrypt encrypted data are held in escrow so that, under certain circumstances, an authorized third party may gain access to those keys.
Key escrow is an arrangement in which the keys needed to decrypt encrypted data are held in escrow so that, under certain circumstances, an authorized third party may gain access to those keys.
Key fob
Key fobs are increasingly used in apartment buildings and condominium buildings for access to common areas (ie.
Key fobs are increasingly used in apartment buildings and condominium buildings for access to common areas (ie.
Key generation
Key generation is the process of generating keys for cryptography.
Key generation is the process of generating keys for cryptography.
Key generator
A key generator is used in many cryptographic protocols to generate a sequence with many pseudo-random characteristics.
A key generator is used in many cryptographic protocols to generate a sequence with many pseudo-random characteristics.
Key management
Key management is the management of cryptographic keys in a cryptosystem.
Key management is the management of cryptographic keys in a cryptosystem.
Key server (cryptographic)
In computer security, a key server is a computer that receives and then serves existing cryptographic keys to users or other programs.
In computer security, a key server is a computer that receives and then serves existing cryptographic keys to users or other programs.
Key signature (cryptography)
In cryptography, a key signature is the result of applying a hash function on a key, for the purpose of simplifying operations on keys.
In cryptography, a key signature is the result of applying a hash function on a key, for the purpose of simplifying operations on keys.
Key signing party
In cryptography, a key signing party is an event at which people present their PGP-compatible keys to others in person, who, if they are confident the key actually belongs to the person who clai...
In cryptography, a key signing party is an event at which people present their PGP-compatible keys to others in person, who, if they are confident the key actually belongs to the person who clai...
Key size
In cryptography, key size or key length is the size measured in bits of the key used in a cryptographic algorithm (such as a cipher).
In cryptography, key size or key length is the size measured in bits of the key used in a cryptographic algorithm (such as a cipher).
Key space (cryptography)
In cryptography, an algorithm's key space refers to the set of all possible keys that can be used to initialize it.
In cryptography, an algorithm's key space refers to the set of all possible keys that can be used to initialize it.
Key stretching
In cryptography, key stretching refers to techniques used to make a possibly weak key, typically a password or passphrase, more secure against a brute force attack by increasing the time it take...
In cryptography, key stretching refers to techniques used to make a possibly weak key, typically a password or passphrase, more secure against a brute force attack by increasing the time it take...
Key whitening
In cryptography, key whitening is a technique intended to increase the security of an iterated block cipher.
In cryptography, key whitening is a technique intended to increase the security of an iterated block cipher.
Keychain
A keychain or key chain is a small chain, usually made from metal or plastic, that connects a small item to a keyring.
A keychain or key chain is a small chain, usually made from metal or plastic, that connects a small item to a keyring.
Keyfile
A keyfile (or key-file) is a file on a computer which contains encryption or license keys.
A keyfile (or key-file) is a file on a computer which contains encryption or license keys.
Keymat
Keymat (keying material) is a generic term for any (usually classified) material used in the process of loading keys into a cryptographic device.
Keymat (keying material) is a generic term for any (usually classified) material used in the process of loading keys into a cryptographic device.
Keysigning
Keysigning refers to digitally signing someone else's public key using your own.
Keysigning refers to digitally signing someone else's public key using your own.
KOI-18
The KOI-18 is a hand-held paper tape reader developed by the U.S. National Security Agency as a fill device for loading cryptographic keys, or "crypto variables," into security devices, such as...
The KOI-18 is a hand-held paper tape reader developed by the U.S. National Security Agency as a fill device for loading cryptographic keys, or "crypto variables," into security devices, such as...
KSD-64
The KSD-64A
Crypto Ignition Key (CIK) is an NSA-developed EEPROM chip packed in a plastic case that looks like a toy key.
The KSD-64A
Crypto Ignition Key (CIK) is an NSA-developed EEPROM chip packed in a plastic case that looks like a toy key.
KSV-21
The KSV-21 Enhanced Crypto Card is a US National Security Agency-approved PC card that provides Type 1 encryption functions and key storage to the STE secure telephones and other devices.
The KSV-21 Enhanced Crypto Card is a US National Security Agency-approved PC card that provides Type 1 encryption functions and key storage to the STE secure telephones and other devices.
KYK-13
The KYK-13 Electronic Transfer Device is a common fill device designed by the United States National Security Agency for the transfer and loading of cryptographic keys with their corresponding c...
The KYK-13 Electronic Transfer Device is a common fill device designed by the United States National Security Agency for the transfer and loading of cryptographic keys with their corresponding c...
Media Key Block
The Media Key Block is one of the keys that are included inside the copying protection system AACS. This system is used to protect Blu-ray and HD DVD formats from being copied.
The Media Key Block is one of the keys that are included inside the copying protection system AACS. This system is used to protect Blu-ray and HD DVD formats from being copied.
Paper key
A paper key is a machine-readable print of a cryptographic key.
A paper key is a machine-readable print of a cryptographic key.
Pre-shared key
In cryptography, a pre-shared key or PSK is a shared secret which was previously shared between the two parties using some secure channel before it needs to be used.
In cryptography, a pre-shared key or PSK is a shared secret which was previously shared between the two parties using some secure channel before it needs to be used.
Public key certificate
In cryptography, a public key certificate (also known as a digital certificate or identity certificate) is an electronic document which uses a digital signature to bind a public key...
In cryptography, a public key certificate (also known as a digital certificate or identity certificate) is an electronic document which uses a digital signature to bind a public key...
Public key infrastructure
Public Key Infrastructure is a set of hardware, software, people, policies, and procedures needed to create, manage, distribute, use, store, and revoke digital certificates.
Public Key Infrastructure is a set of hardware, software, people, policies, and procedures needed to create, manage, distribute, use, store, and revoke digital certificates.
Public-key infrastructure
Public Key Infrastructure (PKI) is a set of hardware, software, people, policies, and procedures needed to create, manage, distribute, use, store, and revoke digital certificates.
Public Key Infrastructure (PKI) is a set of hardware, software, people, policies, and procedures needed to create, manage, distribute, use, store, and revoke digital certificates.
Quantum digital signature
A Quantum Digital Signature refers to the quantum mechanical equivalent of either a classical digital signature or, more generally, a handwritten signature on a paper document.
A Quantum Digital Signature refers to the quantum mechanical equivalent of either a classical digital signature or, more generally, a handwritten signature on a paper document.
Racoon (KAME)
Racoon is a tool for handling Internet Key Exchange (IKE) in IPsec for Linux, FreeBSD and NetBSD.
Racoon is a tool for handling Internet Key Exchange (IKE) in IPsec for Linux, FreeBSD and NetBSD.
Revocation list
In the operation of some cryptosystems, usually public key infrastructures, a certificate revocation list is a list of certificates that have been revoked, and therefore should not be relied upon.
In the operation of some cryptosystems, usually public key infrastructures, a certificate revocation list is a list of certificates that have been revoked, and therefore should not be relied upon.
Robot certificate authority
A robot certificate authority is a certificate authority (CA) which automatically signs public keys which match some requirement.
A robot certificate authority is a certificate authority (CA) which automatically signs public keys which match some requirement.
Root certificate
In cryptography and computer security, a root certificate is either an unsigned public key certificate or a self-signed certificate that identifies the Root Certificate Authority (CA).
In cryptography and computer security, a root certificate is either an unsigned public key certificate or a self-signed certificate that identifies the Root Certificate Authority (CA).
SAFE-BioPharma Association
SAFE-BioPharma Association is the non-profit association that created and manages the SAFE-BioPharma digital identity and digital signature standard for the global pharmaceutical, biotech and he...
SAFE-BioPharma Association is the non-profit association that created and manages the SAFE-BioPharma digital identity and digital signature standard for the global pharmaceutical, biotech and he...
Secret sharing
Secret sharing refers to method for distributing a secret amongst a group of participants, each of whom is allocated a share of the secret.
Secret sharing refers to method for distributing a secret amongst a group of participants, each of whom is allocated a share of the secret.
Secure DTD2000 System
The KIK-20 Secure DTD2000 System (SDS) is a key fill device developed by Sypris Electronics, Florida, US, under the auspices of the U.S. National Security Agency.
The KIK-20 Secure DTD2000 System (SDS) is a key fill device developed by Sypris Electronics, Florida, US, under the auspices of the U.S. National Security Agency.
Secure key issuing cryptography
Secure key issuing is variant of ID-based cryptography that reduces the level of trust that needs to be placed in a trusted third party by spreading the trust across multiple third parties.
Secure key issuing is variant of ID-based cryptography that reduces the level of trust that needs to be placed in a trusted third party by spreading the trust across multiple third parties.
Self-certifying key
In cryptography a self-certifying key system is one in which both the public key and the certificate are combined as one piece of information.
In cryptography a self-certifying key system is one in which both the public key and the certificate are combined as one piece of information.
Self-signed certificate
In cryptography and computer security, a self-signed certificate is an identity certificate that is signed by its own creator.
In cryptography and computer security, a self-signed certificate is an identity certificate that is signed by its own creator.
Session key
A session key is a single-use symmetric key used for encrypting all messages in one communication session.
A session key is a single-use symmetric key used for encrypting all messages in one communication session.
Shared secret
In cryptography, a shared secret is a piece of data, known only to the parties involved, in a secure communication.
In cryptography, a shared secret is a piece of data, known only to the parties involved, in a secure communication.
Signal operating instructions
Signal operating instructions (SOI) is a U.S. military term for a type of combat order issued for the technical control and coordination of communications within a command.
Signal operating instructions (SOI) is a U.S. military term for a type of combat order issued for the technical control and coordination of communications within a command.
Simple Key-Management for Internet Protocol
Simple Key-Management for Internet Protocol or SKIP was a protocol developed circa 1995 by the IETF Security Working Group for the sharing of encryption keys.
Simple Key-Management for Internet Protocol or SKIP was a protocol developed circa 1995 by the IETF Security Working Group for the sharing of encryption keys.
Simple public key infrastructure
Simple public key infrastructure (SPKI, pronounced spoo-key) was born out of a joint effort to overcome the overcomplication and scalability problems of traditional X.509 public key in...
Simple public key infrastructure (SPKI, pronounced spoo-key) was born out of a joint effort to overcome the overcomplication and scalability problems of traditional X.509 public key in...
Ssh-agent
ssh-agent is a program that used together with OpenSSH or similar SSH programs provides a secure way of storing the passphrase of the private key.
ssh-agent is a program that used together with OpenSSH or similar SSH programs provides a secure way of storing the passphrase of the private key.
Static key
A key is called static if it is intended for use for a relatively long period of time and is typically intended for use in many instances of a cryptographic key establishment scheme.
A key is called static if it is intended for use for a relatively long period of time and is typically intended for use in many instances of a cryptographic key establishment scheme.
Temporal Key Integrity Protocol
Temporal Key Integrity Protocol or TKIP is a security protocol used in the IEEE 802.11 wireless networking standard.
Temporal Key Integrity Protocol or TKIP is a security protocol used in the IEEE 802.11 wireless networking standard.
Texas Instruments signing key controversy
The Texas Instruments signing key controversy refers to the controversy which resulted from Texas Instruments' response to a project to factorize the 512-bit RSA cryptographic keys needed to wri...
The Texas Instruments signing key controversy refers to the controversy which resulted from Texas Instruments' response to a project to factorize the 512-bit RSA cryptographic keys needed to wri...
Ticket Granting Ticket
In some computer security systems, a Ticket Granting Ticket (TGT) is a small, encrypted identification file with a limited validity period.
In some computer security systems, a Ticket Granting Ticket (TGT) is a small, encrypted identification file with a limited validity period.
Trust anchor
In cryptography, a trust anchor is an authoritative entity represented via a public key and associated data.
In cryptography, a trust anchor is an authoritative entity represented via a public key and associated data.
Trusted paper key
A trusted paper key is a machine-readable print of a cryptographic key.
A trusted paper key is a machine-readable print of a cryptographic key.
Uf-cma
Uf-cma is the abbreviation of “unforgeable against chosen-message attack”, mostly used in illustrating security of message authentication or digital signature.
Uf-cma is the abbreviation of “unforgeable against chosen-message attack”, mostly used in illustrating security of message authentication or digital signature.
VeriSign Secured Seal
The VeriSign Secured Seal is part of the VeriSign SSL Service.
The VeriSign Secured Seal is part of the VeriSign SSL Service.
Weak key
In cryptography, a weak key is a key, which, used with a specific cipher, makes the cipher behave in some undesirable way.
In cryptography, a weak key is a key, which, used with a specific cipher, makes the cipher behave in some undesirable way.
Web of trust
In cryptography, a web of trust is a concept used in PGP, GnuPG, and other OpenPGP-compatible systems to establish the authenticity of the binding between a public key and its owner.
In cryptography, a web of trust is a concept used in PGP, GnuPG, and other OpenPGP-compatible systems to establish the authenticity of the binding between a public key and its owner.
Wildcard certificate
A wildcard certificate is a public key certificate with which you can secure multiple subdomains.
A wildcard certificate is a public key certificate with which you can secure multiple subdomains.
Wildcard SSL certificate
A wildcard certificate is a public key certificate with wich you can secure multiple subdomains.
A wildcard certificate is a public key certificate with wich you can secure multiple subdomains.
Zeroisation
In cryptography, zeroisation (also spelled zeroization) is the practice of erasing sensitive parameters (especially keys) from a cryptographic module to prevent their disclosure if the equ...
In cryptography, zeroisation (also spelled zeroization) is the practice of erasing sensitive parameters (especially keys) from a cryptographic module to prevent their disclosure if the equ...