Glossary

Key

cryptographic keyencryption key

A cryptographic key is a value that controls a cipher’s transformation and determines who can encrypt, decrypt, or authenticate data.

Definition

A cryptographic key is a parameter supplied to a cryptographic algorithm. The algorithm may be public, while the key selects a particular transformation. Symmetric systems share a secret key; asymmetric systems use a mathematically related public and private key pair.

Keys and passwords

A key is normally random bytes of the size required by the algorithm. A human password has less predictable entropy and should be converted into a key with a password-based key derivation function and salt. Nonces, initialization vectors, and salts serve different purposes and are not interchangeable with keys.

Key management

Strong algorithms cannot compensate for exposed or poorly generated keys. Secure systems control key generation, storage, access, backup, rotation, revocation, and destruction. Public keys may be distributed openly, but private and symmetric keys must remain secret and authentic public keys must be verified.

Frequently asked questions

No. A password is human-chosen input; a key is usually high-entropy binary data. A KDF can derive a suitable key from a password.

Only within the design of the algorithm. Key sizes are not directly comparable across different cipher families, and an oversized key cannot fix a weak algorithm or implementation.

Usually no. Its required property is often uniqueness or unpredictability, depending on the mode. Reusing it incorrectly can still destroy security.

See also