Cybersecurity Course in Chandigarh
                     Cryptography in Cyber Security 
Introduction to 
Cryptography
The practice of securing communication and data through the use of 
codes and ciphers.
Cryptography is vital for protecting sensitive information, ensuring 
data integrity, authentication, and non-repudiation in cyber security.
Cryptography has a long history dating back to ancient civilizations, 
but modern cryptography emerged in the 20th century.
Confidentiality (keeping data secret), integrity (ensuring data is not 
altered), authentication (verifying identity), and non-repudiation 
(preventing denial of actions).
Symmetric cryptography uses a shared secret key, while asymmetric 
cryptography uses public and private key pairs.
Symmetric 
Cryptography
A type of cryptography where the same key is used for both 
encryption and decryption.
The sender and receiver must share the same secret key for 
encryption and decryption.
Advanced Encryption Standard (AES), Data Encryption Standard 
(DES), Blowfish, RC4.
Fast encryption/decryption process, efficient for large data sets.
Key distribution and management challenges, as the secret key 
must be shared securely.
 Asymmetric 
Cryptography
A type of cryptography that uses a pair of mathematically 
related keys – a public key and a private key.
The public key is used for encryption, and the private key is 
used for decryption.
RSA, Diffie-Hellman, Elliptic Curve Cryptography (ECC).
Secure key exchange, digital signatures, no need for shared 
secrets.
Slower than symmetric cryptography, computationally 
intensive.
Cryptographic Hash 
Functions
Cryptographic hash functions: Mathematical functions that map 
data of arbitrary size to a fixed-size hash value or digest.
Properties: One-way (irreversible), collision-resistant (two 
different inputs should not produce the same hash).
Examples: SHA-256, SHA-3, MD5 (no longer considered secure).
Applications: Data integrity checks, password storage, digital 
signatures.
Importance: Hash functions are crucial for ensuring data 
integrity and authentication in cyber security.
Weaknesses and vulnerabilities: Collisions (two inputs 
producing the same hash), length extension attacks.
Digital Signatures
Digital signatures: A mathematical scheme for demonstrating 
the authenticity of digital data or documents.
Working principle: Based on asymmetric cryptography, using 
public and private key pairs.
Purposes: Authentication (verifying the signer's identity), 
non-repudiation (preventing denial of actions), integrity 
(ensuring data has not been altered).
Components: Hash function, private key for signing, public 
key for verification.
Verification process: The recipient uses the sender's public 
key to verify the digital signature.
Key Management
Importance: Proper key management is essential for maintaining the security and integrity 
of cryptographic systems.
Key generation: Creating secure and random keys according to best practices and standards.
Key distribution and exchange: Securely sharing keys between authorized parties using key 
exchange protocols.
Key storage and protection: Storing keys securely, using hardware security modules (HSMs) 
or key vaults.
Key revocation and updates: Revoking compromised keys and updating keys regularly to 
maintain security.
Key management best practices: Separation of duties, access controls, auditing, and 
compliance with standards.
Encryption in Network 
Security
Importance: Encryption is crucial for securing network 
communication and protecting data in transit.
Secure Socket Layer (SSL) and Transport Layer Security (TLS): 
Cryptographic protocols for secure communication over networks.
Virtual Private Networks (VPNs): Encrypted tunnels for secure 
remote access and data transmission over public networks.
Wireless encryption protocols: WPA2, WPA3 for securing wireless 
networks.
Secure communication protocols: SSH for secure remote shell 
access, HTTPS for secure web browsing.
Challenges and vulnerabilities: Man-in-the-middle attacks, protocol 
vulnerabilities (e.g., Heartbleed, POODLE).
Cryptography in Cloud 
Security
Importance: Cryptography plays a vital role in securing data 
and communication in cloud environments.
Cloud data encryption: Encrypting data at rest and in transit 
to and from cloud services.
Cloud key management: Managing and securing encryption 
keys in the cloud, using cloud key management services.
Secure communication with cloud services: Establishing 
secure connections to cloud services using encryption 
protocols.
Challenges and concerns: Data breaches, insider threats, loss 
of control over data and keys.
Importance: Cryptography is essential for securing 
mobile devices and protecting sensitive data on the 
go.
Mobile device encryption: Full-disk encryption and 
Cryptograp file-based encryption for mobile devices.
hy in Secure communication for mobile apps: Encrypting 
data transmission and communication for mobile 
Mobile applications.
Security Challenges and vulnerabilities: Jailbreaking/rooting, 
malware, insecure app development practices.
Mobile application security best practices: 
Implementing secure coding practices, encrypting 
data, and following mobile security guidelines.
Cryptography plays a vital role in securing data, 
communication, and systems in cyber security.
Conclusio Symmetric and asymmetric cryptography, hash functions, digital signatures, key management, and 
n and various applications.Using strong encryption algorithms, proper key 
Best management, following security standards and guidelines, and staying updated with developments.
Practices Finding the right balance between security and user experience.
Continuously learning about new cryptographic 
developments, vulnerabilities, and best practices.
Cybersecurity Course in Chandigar
h
For Query Contact : 998874-1983