BY:MUHAMMAD IMRAN AFZAL

Cryptographic Techniques
Cryptography is the science of securing communication and
information through the use of algorithms, ensuring
confidentiality, integrity, authentication, and non-repudiation.
Several cryptographic techniques are commonly used to secure
data, each serving a unique purpose. Below, we'll explore four
fundamental cryptographic techniques: symmetric encryption,
asymmetric encryption, hashing, and digital
signatures/certificates.

1. Symmetric Encryption

Symmetric encryption refers to a cryptographic technique

where the same key is used for both encryption and decryption.
It is one of the fastest encryption methods and is widely used for
encrypting large volumes of data. However, the primary
challenge is ensuring the secure distribution of the key, as both
parties must have the same key to communicate securely.

Key Characteristics:

o Same key for encryption and decryption.

o Faster than asymmetric encryption but requires
secure key management.

Common Algorithms:

o AES (Advanced Encryption Standard): AES is one of

the most widely used symmetric encryption
algorithms. It supports key lengths of 128, 192, or
256 bits and is considered highly secure and efficient.
AES is used in many applications, including securing
communication over HTTPS.
o DES (Data Encryption Standard): DES is an older
symmetric encryption algorithm that uses a 56-bit
 BY:MUHAMMAD IMRAN AFZAL

key. It was once widely used but is now considered

insecure due to its small key size and susceptibility
to brute-force attacks. It has been largely replaced
by AES.

o Data encryption in storage (e.g., encrypted hard

drives).
o Secure communication in protocols like VPNs and
TLS.

2. Asymmetric Encryption

Asymmetric encryption (or public-key cryptography) uses

two keys: a public key for encryption and a private key for
decryption. The public key can be shared freely, while the
private key is kept secret. This method eliminates the need for
the secure exchange of keys, unlike symmetric encryption.

o Public and private key pair (public key for

encryption, private key for decryption).
o Solves the key distribution problem that symmetric
encryption faces.
o Slower than symmetric encryption but ideal for
secure communications.

o RSA (Rivest-Shamir-Adleman): RSA is one of the

oldest and most widely used asymmetric encryption
algorithms. It is based on the difficulty of factoring
large prime numbers. RSA is used in various
applications, such as secure email (PGP), digital
signatures, and SSL/TLS certificates.
o ECC (Elliptic Curve Cryptography): ECC is a more
modern approach that provides similar security to
RSA but with smaller key sizes, making it more
efficient. ECC is gaining popularity for mobile
devices and low-bandwidth applications. It’s widely
used in cryptographic protocols like ECDSA (Elliptic
 BY:MUHAMMAD IMRAN AFZAL

Curve Digital Signature Algorithm) for digital

signatures.

o Secure key exchange (e.g., Diffie-Hellman key

exchange).
o Digital signatures for authentication and verification.
o SSL/TLS encryption for web traffic.

o 3. Hashing

Hashing is a cryptographic technique used to transform data

into a fixed-size string of characters, typically a hash value.
Hash functions are one-way functions, meaning the original data
cannot be easily derived from the hash. Hashing is primarily
used for verifying data integrity, password storage, and digital
signatures.

o One-way function: It's computationally difficult to

reverse the hash value to the original data.
o Fixed-size output: Regardless of the input size, the
output (hash) is always of a fixed size.
o Collisions: Ideally, no two distinct inputs should
produce the same hash (although some weak hash
functions do have collision vulnerabilities).

Common Algorithms:

o SHA-256 (Secure Hash Algorithm 256-bit): Part of

the SHA-2 family, SHA-256 is widely used in digital
signatures, certificates, and blockchain technology.
It generates a 256-bit hash value and is considered
secure.
o MD5 (Message Digest Algorithm 5): Once widely
used, MD5 is now considered insecure due to
vulnerabilities allowing for hash collisions (i.e., two
different inputs producing the same hash). It is not
 BY:MUHAMMAD IMRAN AFZAL

recommended for use in secure applications

anymore.

o Verifying file integrity (e.g., checksums to ensure

that a file has not been tampered with).
o Storing passwords securely (typically used with
salting techniques).
o Digital signatures to confirm the integrity and
authenticity of data.

o 4. Digital Signatures and Certificates

Digital signatures and certificates are used to provide

authenticity, integrity, and non-repudiation in digital
communication. A digital signature is a cryptographic
technique that ensures that a message or document has not been
altered and confirms the identity of the sender. Digital
certificates are used to validate the authenticity of the public key
associated with the signature.

o Digital Signatures: A digital signature is created

using the sender's private key to encrypt a hash of the
data, allowing the recipient to verify the data's
authenticity using the sender's public key.
o Digital Certificates: A digital certificate is issued by a
trusted Certificate Authority (CA) and associates a
public key with the identity of an individual,
organization, or device. Certificates are used in
protocols like SSL/TLS for secure web communication.

o RSA-based Digital Signatures: RSA digital signatures

use the RSA algorithm to generate a signature by
encrypting the hash of a message with the sender’s
private key. The recipient can verify the signature
using the sender’s public key.
o ECDSA (Elliptic Curve Digital Signature Algorithm):
ECDSA is based on elliptic curve cryptography and is
 BY:MUHAMMAD IMRAN AFZAL

used in modern applications for digital signatures,

offering stronger security with smaller key sizes
compared to RSA.

o Digital Signatures: Used for signing documents,

emails, and software to ensure authenticity and
integrity.
o Digital Certificates: Used in HTTPS to authenticate
the server’s identity and enable encrypted
communication between a client and server.

Summary: These cryptographic techniques—symmetric

encryption, asymmetric encryption, hashing, and digital
signatures/certificates—are foundational to modern security.
Each technique plays a unique role in protecting data:

 Symmetric encryption is efficient for encrypting large

volumes of data.
 Asymmetric encryption enables secure communications
without the need for key exchange.
 Hashing ensures data integrity and is used in password
storage and verification.
 Digital signatures and certificates authenticate data and
ensure its integrity, as well as provide non-repudiation.