Cryptographic Key
What is Cryptographic Key?
Cryptographic KeyA high-entropy secret or public value that parameterizes a cryptographic algorithm to encrypt, decrypt, sign or authenticate data.
A cryptographic key is a string of bits used by a cryptographic algorithm to transform data: in symmetric cryptography the same key encrypts and decrypts (e.g., AES-128/192/256), while in asymmetric cryptography a key pair consists of a private key and a mathematically related public key (e.g., RSA-2048, ECDSA P-256, Ed25519). Key strength depends on length, randomness, and algorithm; current NIST guidance considers 128-bit symmetric keys, 3072-bit RSA, and 256-bit elliptic-curve keys as roughly equivalent at the 128-bit security level. Keys must be generated from a cryptographically secure RNG, stored in protected storage (HSM, TPM, secure enclave, KMS) and managed across their full lifecycle: generation, distribution, use, rotation, escrow, archival, revocation and destruction.
● Examples
- 01
A 256-bit AES key generated by a hardware RNG and stored in an HSM.
- 02
An Ed25519 key pair used to sign Git commits and SSH connections.
● Frequently asked questions
What is Cryptographic Key?
A high-entropy secret or public value that parameterizes a cryptographic algorithm to encrypt, decrypt, sign or authenticate data. It belongs to the Cryptography category of cybersecurity.
What does Cryptographic Key mean?
A high-entropy secret or public value that parameterizes a cryptographic algorithm to encrypt, decrypt, sign or authenticate data.
How do you defend against Cryptographic Key?
Defences for Cryptographic Key typically combine technical controls and operational practices, as detailed in the full definition above.
What are other names for Cryptographic Key?
Common alternative names include: Crypto key, Encryption key.