Is the note for 'PGP & Hashing' free to read?

Yes, NotesMedia provides free access to 'PGP & Hashing' notes for BCA / B.Tech preparation online.

Does this cover the syllabus for Network Security & Cryptography Notes in English?

Yes, this chapter covers key concepts of 'PGP & Hashing' under the Network Security & Cryptography Notes in English syllabus for BCA / B.Tech.

This note is approximately a 18-minute read.

In today's digital age, the security of information and data has become extremely important. When we send an email, document, or other sensitive data online, it is essential to keep it secure so that it does not fall into the hands of an unauthorized person.
Techniques like PGP (Pretty Good Privacy) and Hashing play a significant role in this process.
Both PGP and hashing play crucial roles in cybersecurity. PGP ensures the confidentiality and authenticity of data, while hashing verifies data integrity.
By using these two techniques correctly, we can secure our data and messages and ensure that they can only be seen by the intended recipient.

This article will discuss PGP and Hashing in detail, their uses, and their importance in security.

PGP (Pretty Good Privacy) – A Brief Introduction

PGP (Pretty Good Privacy) is a popular data encryption method used for securing emails, files, messages, and data. It was developed in 1991 by Phil Zimmermann and has since become a standard for data encryption and signatures.
The main purpose of PGP is to encrypt and decrypt messages so that only the correct recipient can read them. Additionally, PGP is used for digital signatures, which ensure that the message was sent by the correct person and has not been altered in transit.

Main Components of PGP:

Encryption: In PGP, the message is encrypted to secure it. This process uses a Public Key, which is sent to the recipient. To read the message, the recipient must use their Private Key.
Decryption: The recipient uses their Private Key to decrypt the encrypted message back into its normal form (Plaintext).
Digital Signature: PGP also provides a digital signature, which authenticates that the message was sent by the correct person. The digital signature also ensures that the message has not been tampered with.

How PGP Works:

PGP combines public-key cryptography and symmetric-key cryptography. Its working method is as follows:

Encryption Process: First, the message is encrypted using a symmetric key. This key is also encrypted with a public key.
The recipient, who has already provided their public key, decrypts the message key and then uses that key to read the message.
Digital Signature: When a person sends a message, they also add a digital signature with the message using their private key. The recipient verifies that signature with the sender's public key. This way, the authenticity of the message is checked.

Benefits of PGP:

Security and Privacy: PGP encrypts your messages, so only the correct recipient can read them. It also maintains the privacy of the message.
Authenticity: The digital signature ensures that the message was sent by the correct person and no one has altered it in between.
Extended Use: PGP can be used not only for email but for securing any data or file.

Hashing – A Brief Introduction

Hashing is a cryptographic technique used to generate a unique fingerprint or code for identifying data or a message. It is a process where data is converted into a fixed-length alphanumeric string, called a hash value or hash.
The main purpose of hashing is to verify the integrity of data. It is used for securing passwords, checking message integrity, and with digital signatures.

Main Components of Hashing:

Immutability: Once data is hashed, it cannot be reverted to its original form. Hashing is a one-way process.
Unique Output: Hashing always produces the same output for the same input, but even a slight change in the input completely changes the hash value. This is called the Avalanche Effect.
Fixed Output: No matter how large the input data is, hashing always produces an output of a fixed size. For example, the MD5 hashing algorithm always produces a 128-bit output, and SHA-256 always produces a 256-bit output.

How Hashing Works:

Hashing algorithms (like MD5, SHA-1, SHA-256) process every bit of the data in a specific way and convert it into a fixed-size hash. Some key uses of hashing are:
Password Storage: When a user sets a password on a website, the password is not stored directly. Its hash value is stored. When the user logs in, their password is hashed again and compared with the previously stored hash.
Message Integrity: Hashing is used to ensure that a message or data has not been altered in transit. The hash value of the message is generated, and the recipient re-hashes it to check if the data has changed.
Digital Signature: In a digital signature, the hash value of the message is encrypted with the sender's private key, allowing the recipient to verify that the message is authentic.

Types of Hashing:

MD5 (Message Digest Algorithm 5): This is one of the oldest and most popular hashing algorithms, which produces a 128-bit output. However, it is now considered insecure for security purposes because of its vulnerability to collisions.
SHA (Secure Hash Algorithm): This is a more secure and widely used hashing algorithm. SHA-256 is a popular version that produces a 256-bit output and is considered one of the best for security.

Benefits of Hashing:

Data Integrity Check: The main purpose of hashing is to ensure that no changes have been made to the data or message.
Secure Password Storage: Hashing is used to store passwords by storing their hash instead of the password itself.
Fast Processing: Hashing algorithms are very fast and can process large amounts of data in a short time.

Relationship Between PGP & Hashing:

Both PGP and hashing are used to ensure data security and integrity. Hashing is used within PGP's encryption and digital signature processes.
For example, when a message is sent via PGP, a hash value of the message (e.g., SHA-256) is generated and encrypted. This ensures that the message has not been altered in the middle.