simplify public-key cryptophay section for dummies like me

2025-02-17 01:26:29 +01:00 · 2023-10-12 17:50:39 +02:00 · 2023-10-12 17:50:39 +02:00 · 891ce892fc
commit 891ce892fc
parent 61f8a76bd6
1 changed files with 3 additions and 3 deletions
--- a/book/source/03-cryptography.md
+++ b/book/source/03-cryptography.md
@ -70,11 +70,11 @@ By addressing the malleability problem, AEAD also counters a variation of the EF
 [^efail]: A variation of the [EFAIL](https://en.wikipedia.org/wiki/EFAIL) attack can be prevented by both the MDC and AEAD mechanisms. Also see ["No, PGP is not broken, not even with the Efail vulnerabilities,"](https://proton.me/blog/pgp-vulnerability-efail) especially the section "Malleability Gadget Exfiltration Channel Attack."


-## Public-key, or asymmetric cryptography
+## Public-key (asymmetric) cryptography

-[Public-key cryptography](https://en.wikipedia.org/wiki/Public-key_cryptography) systems use asymmetric pairs of related keys. Public-key cryptographic systems support *encryption/decryption* as well as *digital signature* operations.
+[Public-key cryptography](https://en.wikipedia.org/wiki/Public-key_cryptography) uses asymmetric pairs of related keys. Each pair consists of a public key and a private key. These systems support encryption, decryption, and digital signature operations.

-Unlike symmetric cryptography, public-key cryptography doesn't require participants to pre-arrange a shared secret. Instead, with public-key cryptography, the public parts of the key material can be shared openly and then used for cryptographic operations.
+Unlike symmetric cryptography, participants are not required to pre-arrange a shared secret. In public-key cryptography, the public key material is shared openly for certain cryptographic operations, such as encryption and signature creation, while the private key, kept confidential, is used for operations like decryption and signature verification.

 (asymmetric_key_pair)=
 ### Asymmetric cryptographic key pairs