CRYPTOGRAPHY IS ONE OF the most common and effective tools the security practitioner has to meet the security objectives of an organization. This chapter explains the key foundational concepts the security practitioner will need to understand and apply the fundamental concepts of cryptography.

Topics

The following topics are addressed in this chapter:

• Fundamental concepts of cryptography
  • Evaluation of algorithms
  • Hashing
  • Salting
  • Symmetric/asymmetric cryptography
  • Digital signatures
  • Non-repudiation
• Requirements for cryptography
• Secure protocols
• Cryptographic systems
  • Fundamental key management concepts
  • Public key infrastructure
  • Administration and validation
  • Web of Trust
  • Implementation of secure protocols