Skip to main content

Crypto misconceptions due to poor semantics

Let's start by explaining a use case and the confusion it gives due to poor nomenclature in the crypto-world. The case of me giving a so-called private-key to someone, so I can send the person an encrypted message with the pared public-key, so only the receiver can open it.

In this use case, in fact, I make a private-key public and assume the public-key to be private.

This use case makes clear that the naming of private-key and public-key are a poor semantic choice. It is a poor choice because depending on the use case, the private-key can be public and the other way around.

We better call the private-key just the encryption-key, and the public-key an encryption-vault. Let's then revisit the example use case now with the new naming.

The case of me giving a so-called encryption-key to someone, so I can send the person an encrypted message in an encryption-vault, so only the receiver can open it.

We have 4 clearly define objects now:

  1. public-encryption-key
  2. private-encryption-key
  3. public-encryption-vault
  4. private-encryption-vault

And vaults can have two states, namely be empty or being filled.

So we can split 3 and 4 in two types of boxes; empty and filled:

  1. encryption-vault (empty)
  2. encrypted-vault (filled)
     

Comments

Post a Comment

Popular posts from this blog

De EU en de crypto war! Overheid zie toch eens de kansen!!

  Naar aanleiding van het uitstekende artikel van Fred Hage in de Computable van  27 november 2020. Overheden worstelen met End-to-end encryptie en ‘lawful interception’. Met andere woorden privacy op internet aan de ene kant en de mogelijkheid criminaliteit te onderzoeken aan de andere kant. Het blijft me verbazen dat overheden blind zijn voor de kansen die dit dilemma biedt! Stel "ik kan bij de NL-overheid mijn encryptie regelen" (met de wetenschap dat ze mee kunnen kijken). Dan doe ik dat toch zolang ik niets te verbergen heb! Dus: Overheid wordt eens wakker en bied zelf encryptie services aan! Ga met de betrokken internet diensten zoals Google, Amazon, Facebook, Microsoft .. etc. om de tafel zitten en ontwikkel encryptiediensten en standaards voor (vertrouwde) burgers waar ze gebruik van kunnen maken. De diensten kunnen dan vertrouwd verkeer van onvertrouwd verkeer onderscheiden. Ze kunnen vertrouwd verkeer direct, eventueel automatisch, onderzoeken. En me...
1 comment
Read more

Microsoft; Google; IBM all the same.

  Today, Microsoft announced https://cloudpc.im/. After they announced Windows 11. After the Windows 11 announcement, it rapidly became clear nearly no existing Windows 10 will be able to be upgraded to Windows 11. No coincidence. They want to move all customers to monthly payments. Soon you only can run Word, Excel and PowerPoint in a browser. Just like with Google! So what is the difference? It is all the same! You lost control over your data and your wallet!  What will be the countermovement?
Post a Comment
Read more

Google fails but Firefox too!

Google clearly gets more and more influenced by typical old style USA marketing people. And with that it loses the quality edge. Youtube and other advertising platforms present you all the time with advertisements not fitting your interests. Cashing with it on de advertiser and annoying you with sounds and images about things you never will buy! Google introduces Chromebooks (a nice and user friendly Linux solution) but then marketing comes in and you need to replace your hardware every 3 to 5 years. They have a super photo storage solution but then marketing comes in and you are in the dark. Chromecast was nice until marketing came in and stopped with chromecast audio. Now we have creepy listeners all over the house. (Or you stop using chromecast as I did). I liked Google but it starts to annoy me more and more. I love their innovative power and their openness toward open-source. But I hate the increasing influence by creepy sales. I'm sad about the poor sense for customer needs b...
Post a Comment
Read more