DEV Community

Shreehari Menon
Shreehari Menon

Posted on • Originally published at meetcyber.net on

What is Cryptography and Why It Matters Today?

#postquantumcryptography #cybersecurity #encryption #quantumcomputing

Understanding Cryptography from the Ground Up: A Beginner-Friendly Guide to the Security Techniques Protecting Modern Digital Systems Before We Dive into Post-Quantum Cryptography and Future Encryption Technologies

  1. Introduction: The Invisible Shield

Imagine you are sitting in a busy airport terminal. You open your laptop, connect to the public Wi-Fi, and log into your company’s portal to check a confidential document. You don’t think twice about it.

Technically, your data is being broadcast over radio waves to a router that hundreds of strangers are also using. Anyone with a cheap antenna and free software could intercept those radio waves. Yet, you trust that your password and your company’s secrets are safe.

Why? Because of Cryptography.

Cryptography is the invisible infrastructure of the modern digital world. It is the science that allows us to build trust in an untrusted environment. Without it, the internet would be nothing more than a digital library -great for reading public information, but impossible for banking, shopping, or private conversation.

In this first article of our series The Road to Post-Quantum Cryptography , we will steer clear of the complex mathematics. Instead, we will explore what cryptography actually is, the fundamental problems it solves, and why understanding it is critical for every developer and engineer today.

2. What is Cryptography? (It’s Not Just Secrecy)

Many beginners believe cryptography is simply “the art of writing codes to hide messages.” While that was true in the days of the Roman Empire, modern cryptography is much broader.

In the digital age, cryptography is - the science of mathematical techniques related to aspects of information security.

It doesn’t just hide data; it proves things about data. For an engineer, cryptography is a toolbox used to solve three specific problems, often called the CIA Triad.

The three goals of modern cryptography.

The Three Pillars

  1. Confidentiality (Secrecy)
  • The Goal: Ensure that information is accessible only to those authorized to have access.
  • The Analogy: A sealed envelope. If you send a letter in a sealed envelope, the mail carrier handles it, but they can’t read it. Only the person who opens the envelope can see the contents.
  1. Integrity (Tamper-Proofing)
  • The Goal: Ensure that data has not been changed or corrupted during transit.
  • The Analogy: A wax seal on that envelope. If the recipient receives the envelope and the wax seal is broken or smeared, they know someone tampered with the message, even if the letter inside looks fine.
  1. Authentication (Identity)
  • The Goal: Confirm the identity of the person or system you are communicating with.
  • The Analogy: A signature or a passport. How do you know the letter actually came from your bank and not a scammer? Cryptography provides a mathematical way to prove origin.

3. The Golden Rule: Kerckhoffs’s Principle

Before we learn how to encrypt things (which we will cover in the upcoming articles), we must understand the most important rule in cryptographic design.

In the movies, hackers often try to figure out “the secret algorithm” used by the NSA or a bank. In reality, professional cryptographers do not hide the algorithm.

In 1883, a Dutch cryptographer named Auguste Kerckhoffs formulated a principle that defines modern security:

“A cryptosystem should be secure even if everything about the system, except the key, is public knowledge.”

We trust the math (the box), not the secrecy. The security lies entirely in the Key.

Why is this important?

  • Open Source Trust: The algorithms used to secure your bank account (like AES or RSA) are public. You can download the source code right now. They are secure not because the math is secret, but because the Key - a specific string of random numbers used by you -is secret.
  • Peer Review: Because the algorithms are public, thousands of mathematicians try to break them every day. If they survive this scrutiny, we trust them. A “secret” algorithm created by a company hasn’t been tested by anyone but them, making it dangerous.

Takeaway: Never try to invent your own cryptography. Always use standard, public, peer-reviewed algorithms.

4. Why It Matters Today (The Modern Stakes)

Cryptography used to be the domain of spies and generals. Today, it is a requirement for basic human functioning.

1. The Data Economy

We live in a world where data is currency. Credit card numbers, social security numbers, and health records are stored in databases accessible via the internet. Cryptography is the only barrier preventing this data from being copied and stolen en-masse.

2. Privacy as a Human Right

In an era of global surveillance and data tracking, encryption is one of the few tools individuals have to maintain privacy. Apps like WhatsApp and Signal use “End-to-End Encryption,” ensuring that not even the company running the app can read your messages.

3. The Foundation of Blockchain

You cannot understand Bitcoin, Ethereum, or Web3 without cryptography. These technologies use cryptographic concepts (which we will discuss later, like Hashing and Signatures) to create digital scarcity and prove ownership without a central bank.

5. The Looming Challenge: The Quantum Horizon

If cryptography is so great, why is there a “Post-Quantum” movement?

The cryptographic systems we use today are built on specific mathematical problems that are hard for current computers to solve. However, scientists are currently building Quantum Computers -machines that operate on the laws of quantum physics.

Theoretical models suggest that a powerful quantum computer could solve these specific math problems incredibly quickly. If that happens, the “Shield” we discussed in the introduction would shatter. The privacy of the past, present, and future would be compromised.

A new shield labeled “PQC” (Post-Quantum Cryptography) that blocks the Quantum Computer.

This is why you are learning this topic now. We are in a transition period. The world is preparing to upgrade its cryptographic foundation, and there is a massive demand for engineers who understand both the old ways and the new “Post-Quantum” ways.

Summary

  • Cryptography is about more than just hiding secrets; it ensures Confidentiality , Integrity , and Authentication.
  • Kerckhoffs’s Principle teaches us that the system should be public, and only the Key should be secret.
  • We rely on these systems for everything from banking to private messaging.
  • The field is currently evolving to face the Quantum Threat , making this the perfect time to start learning.

What’s Next?

Now that we understand the goals of cryptography, we need to open the toolbox and see the specific tools we use to achieve them.

In the upcoming article, we will break down the three distinct tools of the trade: Encryption , Hashing , and Digital Signatures. We will explain the mechanical difference between them and exactly when a developer should use one versus the other.

Top comments (0)