Webinar Recording: Cryptographic Inventory: Where To Start? Watch here

CryptoNext
Contact
En
Asymmetric Cryptography

Asymmetric Cryptography

What is asymmetric cryptography?

Asymmetric cryptography is built on an idea that sounds simple but carries remarkable mathematical power: two different keys for a single operation.

One key encrypts. The other decrypts. And the second cannot be derived from the first — at least not within any reasonable timeframe using today’s computing systems.

This principle underpins the security of most digital communications: banking transactions, encrypted messaging, document signing, TLS certificates, and public key infrastructures (PKI).

Public key, Private key: The core principle

In an asymmetric cryptography system, each person holds a key pair.

The public key is freely distributed. Any sender can use it to encrypt a message intended for its owner.

The private key stays secret. It alone can decrypt what the public key has encrypted.

A common analogy: imagine a safe fitted with a mail slot. Anyone can drop a message inside. But only the holder of the private key can open it and read its contents.

The classic example involves Alice and Bob. Alice wants to send a confidential message to Bob. She uses Bob’s public key to encrypt the text. Bob receives the encrypted message and, using his private key alone, can decrypt it. Even if a third party intercepts the message in transit, the content remains unreadable.

The Mathematical Foundations

The security of asymmetric cryptography does not rely on secrecy around the algorithm itself. It relies on the computational difficulty of specific mathematical problems.

RSA, one of the most widely deployed algorithms, draws its strength from the difficulty of factoring the product of two large prime numbers. Multiplying two prime numbers of several hundred digits takes a fraction of a second. The inverse operation, recovering the two factors from the result, remains beyond the reach of classical computers at provided key sizes are large enough.

The Diffie-Hellman key exchange rests on the discrete logarithm problem: computing a power modulo a large number is straightforward; inverting that calculation is not.

Elliptic curves (ECDH, ECDSA) offer a security level equivalent to RSA at significantly smaller key sizes. They exploit the algebraic properties of elliptic curves defined over finite fields. Their robustness stems from the difficulty of solving the discrete logarithm problem on these curves — an equation that classical mathematical methods cannot solve efficiently.

Practical Applications

Asymmetric cryptography operates across three main families of use cases.

Data encryption. A sender encrypts a message using the recipient’s public key. Only the recipient, with their private key, can decrypt the content. This is the mechanism behind the TLS protocol that secures HTTPS connections.

Digital signatures. Here, the logic is reversed. The sender signs a message with their private key. Anyone can verify the signature using the corresponding public key — confirming that the message has not been altered and that the sender’s identity is genuine. Digital signatures are central to electronic certificates, PKI systems, and many compliance frameworks.

Key exchange. Asymmetric cryptography allows two parties to agree on a shared secret key, even over an unsecured channel. This is the role of the Diffie-Hellman protocol, a foundation of numerous secure communication systems.

Asymmetric vs Symmetric: Two complementary logics

Symmetric cryptography uses a single key to both encrypt and decrypt data. It is fast, efficient, and well-suited to encrypting large volumes of data. Its limitation: how do you share that secret key securely with the recipient without a third party intercepting it?

Asymmetric cryptography solves precisely that problem. It is more computationally expensive, but it enables secure key exchange and party authentication.

In practice, both methods work together. A protocol like TLS uses asymmetric cryptography to establish a secure channel and negotiate a session key, then switches to a symmetric algorithm for the actual data encryption. The result: the security of asymmetric cryptography combined with the performance of symmetric cryptography.

Hash Functions: An essential complement

Asymmetric cryptography systems frequently rely on hash functions. A hash function transforms a message of any size into a fixed-length digest, in a deterministic and irreversible way.

In the context of a digital signature, what gets signed is not the full message but its hash digest. This accelerates the process and strengthens the security of the overall system.

The Quantum threat: A paradigm shift

Asymmetric cryptography as we know it is under pressure. A sufficiently powerful quantum computer, running Shor’s algorithm, would be capable of factoring the large prime numbers underpinning RSA or solving the discrete logarithm problem that protects elliptic curves and Diffie-Hellman exchanges. That would render today’s asymmetric systems obsolete.

This is not a distant theoretical concern. Malicious actors are already collecting encrypted data today, intending to decrypt it once quantum computing power makes it possible. This is the “Harvest Now, Decrypt Later” strategy.

The answer is post-quantum cryptography: a new generation of asymmetric algorithms built on mathematical problems that resist quantum attacks, standardized by NIST in 2024. The migration to these algorithms is a transition organizations can no longer afford to delay.

What is the difference between a cryptographic inventory and a standard security audit?
The public key is shared freely. It allows any sender to encrypt a message or verify a digital signature. The private key remains secret and belongs solely to its holder. Only the private key can decrypt messages encrypted with the associated public key, or generate a valid signature. The two keys are mathematically linked but the private key cannot be derived from the public key within any reasonable timeframe using classical computing.

Why is asymmetric cryptography slower than symmetric cryptography?
The mathematical operations underlying asymmetric cryptography — factoring large numbers, computing over elliptic curves, modular exponentiation — are inherently more resource-intensive than the substitution and permutation operations used in symmetric algorithms such as AES. This is why, in practice, hybrid systems use asymmetric cryptography only for key exchange and signatures, then delegate data encryption to a symmetric algorithm.

Are RSA and elliptic curves still secure today?
Against classical computers available today, yes — provided sufficiently large key sizes are used (at least 2048 bits for RSA, 256 bits for elliptic curves). However, a sufficiently powerful quantum computer running Shor’s algorithm would be capable of breaking these systems. This is precisely why NIST finalized the first post-quantum cryptography standards in 2024, built on different mathematical problems resistant to known quantum attacks. Organizations using RSA or elliptic curves in sensitive contexts need to start planning their migration now.

What is a PKI and how does it relate to asymmetric cryptography?
A public key infrastructure (PKI) is a set of mechanisms, policies, and services for managing key pairs and digital certificates at organizational or network scale. It relies entirely on asymmetric cryptography: certificates bind a public key to an identity (a person, server, or service), and that binding is itself guaranteed by the digital signature of a certificate authority. Without asymmetric cryptography, there is no PKI.

How will asymmetric cryptography be affected by quantum computing?
Quantum computing poses a direct threat to current asymmetric algorithms. Shor’s algorithm, run on a sufficiently large quantum computer, can solve in polynomial time the mathematical problems on which RSA, Diffie-Hellman, and elliptic curves rely. The cryptographic community’s response is post-quantum cryptography: asymmetric algorithms grounded in new hard problems such as lattice-based or code-based mathematics, for which no efficient quantum algorithm is currently known.

More terms:

Quantum Cryptography Cryptographic Inventory Harvest Now, Decrypt Later