Implementations of cryptographic algorithms must be protected against malicious modification.

Access should be forbidden by default and only explicitly allowed when sufficient permissions are granted.

The security of a larger system is only as good as the weakest link’s protection.

A cryptographic algorithm should be considered insecure until it is mathematically proven to be secure.

The security of a cryptographic system must only be based on the key and not on the secrecy of the algorithm.

Recorded actions cannot be denied by the subjects who have carried them out.

Data is not modified unnoticed without authorisation.

Messages are hashed and signed before being sent to communication partners.

Subjects are honest when communicating with others.

A trusted third party (TTP) cannot read communication exchanged on the network.

The identity of an object or subject can be proven.

Within a set of subjects, sent messages can be traced back to a sender.

Subjects have to log in before being granted access to a system.

User inputs are validated for their correctness before being operated on.

Messages are sent unencrypted, as clear text.

Chiphertext-only attack

Chosen signature attack

Known plaintext attack

Chosen ciphertext attack

Chosen plaintext attack

It is impossible to decrypt data with the secret key.

It is impossible to determine the secret key with only the knowledge about the public key.

It is possible to decrypt the ciphertext only with the public key.

It is impossible to encrypt data with the public key that can be decrypted with the secret key.

It is possible to generate a signature with the public key.

Data economy

Pseudonymisation

Encryption

Message Authentication Code

Obfuscation

Carol signs a message to Bob.

Alice encrypts a message to Bob.

Bob signs a message to Alice.

Bob encrypts a message to Alice.

Alice signs a message to Bob.