Discover published sets by community

The process of securely deleting or destroying cryptographic keys when they are no longer needed or are being decommissioned.

The mathematical algorithm that performs the transformation of data into a seemingly random string of bits (cipher). Selecting a strong algorithm is vital for key management.

The practice of copying cryptographic keys to a secure storage location to prevent data loss in case of key deletion or hardware failure.

A physical device that manages digital keys securely and performs cryptographic operations, offering a high level of protection against tampering and unauthorized access.

A cryptographic system that uses the same key for both encryption and decryption. It is essential for maintaining fast and efficient encryption processes.

Concerns the secure storage of cryptographic keys to prevent unauthorized access. This could involve hardware security modules or encrypted storage mechanisms.

A process by which two or more parties establish a shared cryptographic key through information exchanged over a public channel.

A trusted entity that issues and manages digital certificates as part of a Public Key Infrastructure (PKI).

The structured deployment of keys that are derived from a master key, creating a parent-child relationship where keys at lower levels are managed separately.

A practice where cryptographic keys are stored with a trusted third party, enabling third-party access to encrypted data under certain circumstances.

Guidelines and rules defined by an organization to regulate how cryptographic keys can be used, ensuring they are operated within their intended scope and purpose.

A formal, multi-party procedure for generating, certifying, and distributing cryptographic keys, often involving key signing and physical protection measures.

A cryptographic system that uses a pair of keys for encryption and decryption: one public and one private. This enables secure communication without prior key exchange.

Refers to the period during which a cryptographic key is actively used. After this period, keys should be rotated to mitigate risks of key compromise.

The top-level Certificate Authority in a Public Key Infrastructure hierarchy, which issues digital certificates for lower level CAs.

Random data added as an input to a hash function when generating cryptographic keys or hashing passwords to prevent attacks like dictionary attacks or rainbow table attacks.

A framework for managing digital certificates and public-key encryption, enabling users to securely exchange data over the Internet.

The process of retrieving a lost or corrupted cryptographic key to restore the ability to decrypt data that was encrypted with that key.

The method by which keys are shared between two parties in a secure manner. Diffie-Hellman is an example of a key exchange protocol.

The practice of regularly changing encryption keys to limit the amount of data that can be compromised if a key is breached.

The process of invalidating a key before the end of its intended lifespan. This may be necessary if the key is compromised or if associated credentials are lost.

An electronic document that uses a digital signature to bind a public key with an identity. It provides a level of assurance that a public key is valid.

A method of securing keys by encrypting them with another key, usually referred to as a key encryption key (KEK).

The time span during which a particular cryptographic key can be used for its defined purpose before it must be replaced.

The process of reviewing and verifying the correct deployment and management of cryptographic keys and controls following policies and standards of an organization or industry.

The process of creating keys for use in a cryptographic algorithm. It must be performed using secure random number generation to ensure key unpredictability.

A temporary cryptographic key used during a secure communication session. It reduces exposure and risk of key compromise over time.

A security concept that ensures two or more individuals must operate in concert to perform sensitive tasks, such as the creation, use, or destruction of cryptographic keys.

The highest-level key in a key management hierarchy, from which other keys are derived. Protecting this key is critical as it is used to secure subordinate keys.