Discover published sets by community

The method by which keys are shared between two parties in a secure manner. Diffie-Hellman is an example of a key exchange protocol.

A trusted entity that issues and manages digital certificates as part of a Public Key Infrastructure (PKI).

The process of retrieving a lost or corrupted cryptographic key to restore the ability to decrypt data that was encrypted with that key.

Mechanisms to restrict access to cryptographic keys to authorized users only, often involving credentials, authentication, and authorization checks.

A physical device that manages digital keys securely and performs cryptographic operations, offering a high level of protection against tampering and unauthorized access.

A method of securing keys by encrypting them with another key, usually referred to as a key encryption key (KEK).

The process of securely deleting or destroying cryptographic keys when they are no longer needed or are being decommissioned.

A temporary cryptographic key used during a secure communication session. It reduces exposure and risk of key compromise over time.

A process by which two or more parties establish a shared cryptographic key through information exchanged over a public channel.

An electronic document that uses a digital signature to bind a public key with an identity. It provides a level of assurance that a public key is valid.

The structured deployment of keys that are derived from a master key, creating a parent-child relationship where keys at lower levels are managed separately.

The highest-level key in a key management hierarchy, from which other keys are derived. Protecting this key is critical as it is used to secure subordinate keys.

Concerns the secure storage of cryptographic keys to prevent unauthorized access. This could involve hardware security modules or encrypted storage mechanisms.

A cryptographic system that uses a pair of keys for encryption and decryption: one public and one private. This enables secure communication without prior key exchange.

A cryptographic system that uses the same key for both encryption and decryption. It is essential for maintaining fast and efficient encryption processes.

Refers to the period during which a cryptographic key is actively used. After this period, keys should be rotated to mitigate risks of key compromise.

The process of invalidating a key before the end of its intended lifespan. This may be necessary if the key is compromised or if associated credentials are lost.

The process of creating keys for use in a cryptographic algorithm. It must be performed using secure random number generation to ensure key unpredictability.

The practice of copying cryptographic keys to a secure storage location to prevent data loss in case of key deletion or hardware failure.

A practice where cryptographic keys are stored with a trusted third party, enabling third-party access to encrypted data under certain circumstances.

A framework for managing digital certificates and public-key encryption, enabling users to securely exchange data over the Internet.

Random data added as an input to a hash function when generating cryptographic keys or hashing passwords to prevent attacks like dictionary attacks or rainbow table attacks.

The top-level Certificate Authority in a Public Key Infrastructure hierarchy, which issues digital certificates for lower level CAs.

Guidelines and rules defined by an organization to regulate how cryptographic keys can be used, ensuring they are operated within their intended scope and purpose.

The practice of regularly changing encryption keys to limit the amount of data that can be compromised if a key is breached.

The time span during which a particular cryptographic key can be used for its defined purpose before it must be replaced.

A security concept that ensures two or more individuals must operate in concert to perform sensitive tasks, such as the creation, use, or destruction of cryptographic keys.

The process of reviewing and verifying the correct deployment and management of cryptographic keys and controls following policies and standards of an organization or industry.

The mathematical algorithm that performs the transformation of data into a seemingly random string of bits (cipher). Selecting a strong algorithm is vital for key management.