From the course: CompTIA CySA+ (CS0-002) Cert Prep: 4 Software and Systems Security
Unlock the full course today
Join today to access over 22,400 courses taught by industry experts or purchase this course individually.
Trust models
From the course: CompTIA CySA+ (CS0-002) Cert Prep: 4 Software and Systems Security
Trust models
- [Narrator] Any cryptographic system depends upon some degree of trust. Earlier in the course, we discussed how strong cryptography depends upon a secure key exchange process. The two people communicating must be confident that they're really communicating with each other and not an impersonator. And that nobody is able to eavesdrop on the communication where they exchange encryption keys. The Diffie-Hellman key exchange protocol helps us with preventing eavesdropping, but we still require some way to ensure that we're not communicating with an imposter. In asymmetric cryptography, every user possesses a personal secret key that they don't need to share with anyone else. They can also share their public keys freely, so there's no risk of eavesdropping there. These two factors combine to eliminate the need for eavesdropping protection during key exchange. However, we do still need to worry about imposters. How do we…
Contents
-
-
-
-
-
-
-
-
Understanding encryption4m 15s
-
Symmetric and asymmetric cryptography4m 34s
-
Goals of cryptography2m 26s
-
Choosing encryption algorithms2m 41s
-
Key exchange3m 2s
-
Diffie-Hellman5m 16s
-
Trust models3m 7s
-
PKI and digital certificates4m 20s
-
Hash functions7m 30s
-
Digital signatures4m 4s
-
Creating a digital certificate4m 37s
-
Revoking a digital certificate1m 46s
-
-
-
-
-
-
-
-