From the course: CompTIA CySA+ (CS0-002) Cert Prep: 4 Software and Systems Security

Unlock the full course today

Join today to access over 22,400 courses taught by industry experts or purchase this course individually.

Trust models

Trust models

- [Narrator] Any cryptographic system depends upon some degree of trust. Earlier in the course, we discussed how strong cryptography depends upon a secure key exchange process. The two people communicating must be confident that they're really communicating with each other and not an impersonator. And that nobody is able to eavesdrop on the communication where they exchange encryption keys. The Diffie-Hellman key exchange protocol helps us with preventing eavesdropping, but we still require some way to ensure that we're not communicating with an imposter. In asymmetric cryptography, every user possesses a personal secret key that they don't need to share with anyone else. They can also share their public keys freely, so there's no risk of eavesdropping there. These two factors combine to eliminate the need for eavesdropping protection during key exchange. However, we do still need to worry about imposters. How do we…

Contents