Private Key
What is Private Key?
Private KeyThe secret half of an asymmetric key pair, used to decrypt ciphertext addressed to its owner or to create digital signatures that prove the owner's identity.
A private key is the confidential component of a public-key cryptosystem; it must never be disclosed and is mathematically bound to a corresponding public key. In encryption, the private key decrypts messages encrypted with the matching public key; in signature schemes, it signs data that anyone holding the public key can verify. Private keys are typically protected by storage in hardware security modules (HSMs), TPMs, smart cards, FIDO2 authenticators, or password-encrypted key files, and are subject to lifecycle controls including rotation, revocation, and key escrow policies. Compromise of a private key fully breaks the security guarantees of the associated key pair, enabling impersonation, decryption of past traffic (without perfect forward secrecy), and signature forgery.
● Examples
- 01
An SSH private key file (e.g., id_ed25519) used to authenticate to remote servers.
- 02
A web server's TLS private key paired with its X.509 certificate.
● Frequently asked questions
What is Private Key?
The secret half of an asymmetric key pair, used to decrypt ciphertext addressed to its owner or to create digital signatures that prove the owner's identity. It belongs to the Cryptography category of cybersecurity.
What does Private Key mean?
The secret half of an asymmetric key pair, used to decrypt ciphertext addressed to its owner or to create digital signatures that prove the owner's identity.
How do you defend against Private Key?
Defences for Private Key typically combine technical controls and operational practices, as detailed in the full definition above.
What are other names for Private Key?
Common alternative names include: Secret key (asymmetric).