clarify in section on public vs private keys

This commit is contained in:
Tammi L. Coles 2023-10-07 15:03:43 +02:00 committed by Heiko Schaefer
parent ab926334bd
commit 4e9ddaee0b
No known key found for this signature in database
GPG key ID: 4A849A1904CCBD7D

View file

@ -7,9 +7,9 @@ OpenPGP fundamentally hinges on the concept of "OpenPGP certificates," often ref
The term "(cryptographic) keys" is central to grasping the concept of OpenPGP certificates. However, it can refer to different entities, making it a potentially confusing term. Let's clarify those differences.
### Private vs. public keys
### Public vs. private keys
First, without additional context, the word "key" can refer either to public, or to private asymmetric key material (or even to symmetric keys, which can be used to encrypt private key material in OpenPGP keys).
The term "key," without additional context, can refer to either public or private asymmetric key material. In asymmetric cryptography, fundamental to the OpenPGP standard, a pair of keys is used: a public key for encryption and a corresponding private key for decryption. The public key is shared openly, allowing others to encrypt data meant for the individual who owns the key pair, while the private key is kept confidential by the key pair owner, ensuring only they can decrypt and access the encrypted data. Additionally, symmetric keys may be used in OpenPGP to encrypt private key material, adding a layer of security and complexity.
### Layers of "keys," in OpenPGP