It is defined as cryptographic system, utilizing two keys - private key and public key. Public key is known to each person, whereas secret or private key is known to message recipient only. Necessary element to public key is private as well as public keys are connected in a way that it could be utilized to encrypt the messages and on the contrary, private key can only be utilized to decrypt the messages. Furthermore, it is quite not possible to infer the private key in case you know public key.
Pretty Good Privacy or PGP is a famous system for transmitting the information on the web. They are simple-to-use and extremely secure. The only problem with public key system is you have to know the public key of recipient in order to encrypt the message for her/him. Therefore, what is required is global public keys' registry that is a promise of latest LDAP technology.
Invented in the year 1976 by Martin Hellman and Whitfield Diffie, Public Key Encryption is also referred to as Diffie-Hellman encryption.
Advantages of Public Key Encryption -
1. Mutual Authentication - The day prior autonomous networked devices and IoT, the device was not require authentication, only servers need the same. You should ensure that website in which you are log in is a bank, not phishing site. Bank authenticate the identity via login and password. However, device has to be authenticated in IoT as well as it also has to authenticate the server. Along with secure elements and digital certificates, it is now concrete.
2. Secured Access Control - With unique verification identity, you may determine the access level granted to the device. Additionally, you can deny the access to anybody, who do not have the certificate. Also, if you get to know that certificate is compromised as it is identifiable and unique, you could revoke the access privileges as well as certificate will not be granted the access.
3. Secure Over-the-Air (OTA) Update - Today, the issue with most of the devices is they will admit the software updates through anybody. Make sure that you need a device that just accept the verified software and reliable server. Certification permits the device to show it will receive the update and cryptography permits the device to authenticate signed code as well as server.