What is the fundamental difference between symmetric and asymmetric encryption?

Symmetric encryption uses a single shared key for both encryption and decryption, requiring secure key distribution. Asymmetric encryption uses a pair of mathematically related keys (public and private), where the public key encrypts and the private key decrypts.

How does encryption differ from hashing in terms of data recovery?

Encryption is a two-way function designed to be reversed (decrypted) using a specific key to recover the original plaintext. Hashing is a one-way function that produces a fixed-size fingerprint of data and is not designed to be reversed to reveal the original input.

When should a developer choose symmetric encryption over asymmetric encryption?

Symmetric encryption should be chosen when processing large volumes of data or when high performance is required, such as file system encryption. It is significantly faster than asymmetric encryption because the mathematical operations involved are less complex.

What is the risk of using a weak or short cryptographic key?

A weak or short key reduces the 'keyspace,' making the system vulnerable to brute-force attacks where an attacker tries every possible key combination. Modern standards require longer keys (e.g., AES-256) to ensure the number of combinations is too large for current computers to guess.

Why is it a mistake to rely on 'security through obscurity' for encryption algorithms?

Relying on a secret algorithm is dangerous because once the algorithm is discovered or reverse-engineered, the entire system is compromised. Robust security relies on publicly vetted algorithms where the only secret is the key, ensuring the math holds up even under scrutiny.

What happens if a private key in an asymmetric system is compromised?

If a private key is compromised, any data encrypted with the corresponding public key can be read by the attacker, and the attacker can impersonate the owner by creating valid digital signatures. The key pair must be immediately revoked and replaced.

Define 'Ciphertext' in the context of cryptography.

Ciphertext is the encrypted, unreadable output of an encryption algorithm. It is the result of applying a cipher and a key to plaintext, appearing as a random sequence of characters to anyone without the decryption key.

What is the 'Public Key' in an asymmetric system?

The public key is one half of a cryptographic key pair that can be distributed openly. It is used by others to encrypt messages intended for the owner of the pair or to verify the owner's digital signatures.

What is the Advanced Encryption Standard (AES)?

AES is a widely used symmetric block cipher established as a standard by NIST. It supports key lengths of 128, 192, and 256 bits and is considered the global standard for securing sensitive data in government and industry.

Explain the concept of 'Confusion' in encryption.

Confusion is a property that ensures the relationship between the encryption key and the ciphertext is as complex as possible. This prevents attackers from using statistical patterns in the ciphertext to deduce the key.

Encryption | OCR GCSE Computer Science

3. Computer Networks, Connections & Protocols

Encryption

Summary

Encryption is the cryptographic process of transforming readable information, known as plaintext, into an unintelligible format called ciphertext to prevent unauthorized access. It serves as the primary mechanism for ensuring data confidentiality across digital networks and storage systems by requiring a specific mathematical 'key' to reverse the transformation.

1. Definition & Core Concepts

Plaintext and Ciphertext: Plaintext refers to the original, unencrypted data that is human-readable or easily processed by machines. Ciphertext is the scrambled version produced after an encryption algorithm has been applied, appearing as random noise to anyone without the proper decryption tools.
Cryptographic Keys: A key is a parameter or string of bits used by an algorithm to perform the transformation. The security of modern encryption relies on the secrecy and complexity of the key rather than the secrecy of the algorithm itself, a principle known as Kerckhoffs's Principle.
Encryption Algorithms: These are the mathematical procedures (ciphers) used to perform the encryption. Common examples include the Advanced Encryption Standard (AES) for symmetric encryption and RSA for asymmetric encryption.

A diagram showing the encryption process where plaintext enters an algorithm, is modified by a secret key, and results in ciphertext.

2. Underlying Principles

Confusion and Diffusion: These are the two main properties of a secure cipher. Confusion obscures the relationship between the key and the ciphertext, while diffusion ensures that changing a single bit of plaintext results in many bits of the ciphertext changing.
Computational Hardness: Modern encryption is based on mathematical problems that are easy to perform in one direction but extremely difficult to reverse without specific information (the key). For example, multiplying two large prime numbers is easy, but factoring the product is computationally infeasible for current computers.
Entropy and Randomness: The strength of an encryption system is heavily dependent on the randomness of the keys generated. High entropy ensures that keys cannot be predicted or guessed through brute-force or statistical analysis.

3. Methods & Techniques

4. Key Distinctions

5. Exam Strategy & Tips