# What you'll learn

After watching this video, you'll be able to:
* Describe confidentiality and integrity.
* Explore OpenSSL and its purpose.
* Explain public key cryptography.

# Importance of Cryptography

* In today's vast and interconnected world, ensuring the safety and integrity of data transmission is paramount.
* Therefore, keeping information private on the Internet is critical for deploying and operating applications.
* By implementing cryptography, you can eliminate the potential for snooping or eavesdropping by bad actors.
* In addition, other network attacks such as Spoofing and Hijacking, can be stopped.

**Wondering how?**

Let's look at cryptography services and how you can benefit from them.

# Cryptography Service

* The cryptography service is a confidentiality service that keeps data secret.
* Its purpose is to keep data secure from others without the necessary credentials, even when data traverses a nonsecure network.
* Cryptographic keys, specifically private keys, are the tools you can use to keep data confidential from cyberattacks.
* Without public and private keys, data remains encrypted for e-commerce transactions, ensuring users' information remains confidential.

# Cryptographic Integrity

The next cryptographic service is integrity.
* Integrity guarantees that the data has not been modified or tampered with during and after the reception.
* For example, a file checksum is one method to verify that the downloaded file is the same as the one available online.
* Cryptographic integrity helps support the anti-tampering of data for users needing data verification between sender and receiver.

# Defining OpenSSL

![image.png](attachment:04f55bd9-a5e0-4371-a098-f3dbc033b9e1.png)

Now, let's understand how you can use cryptography.
* OpenSSL is a library of software that implements the Secure Socket Layer, or SSL protocol.
* It's an open-source toolkit to ensure secure communications with cryptography for all types of communications, from personal to commercial and e-commerce transactions.
* The library of software contains symmetric and public key cryptography, message digests, and hash algorithms.
* OpenSSL also includes a pseudorandom number generator and manages key material and common certificate formats.

# How to use OpenSSL?

* You can provide strong cryptography to your programs as an application developer by including the OpenSSL library.
* You can also use OpenSSL directly from the command line after installing it on a local computer.
* In addition, you can run the OpenSSL command directly by running OpenSSL on Linux or Mac or OpenSSL.exe on Windows.
* The command line tool offers numerous options, and a configuration file is available to set configurations as defaults to better tailor to your specific requirements.

# Message digests algorithms

Now, let's explore what message digest algorithms are.
* Message digest algorithms are cryptographic hash functions used to compute checksums of data blocks.
* Besides computing hashes, you can also use message digest to sign and verify signatures.
* When you verify a signature, it's simply running the reverse of the command when signing.
* It's important to note that OpenSSL also supports symmetric ciphers that allow encrypted messages to use the same key.

# Public key cryptography

* Next public key cryptography is a public cryptographic algorithm that uses public and private keys.
* Rivest, Shamir and Adleman (RSA) is the most popular implementation of public key cryptography.
* RSA provides secrecy, authentication, and encryption for anyone to use.
* You can also use RSA to implement prime number generation to generate private keys using different sizes of key lengths depending on the level of encryption needed.

# Summary

In this video, you learned that:
* Confidentiality and integrity are important factors in cryptographic application development.
* OpenSSL is an open-source toolkit that uses a command line and software libraries.
* OpenSSL ensure secure communications with cryptography for all types of communications, from personal to commercial and e-commerce transactions.
* You also explored message digest algorithms, which are cryptographic hash functions used to compute checksums of data blocks and public key cryptography.
* This public cryptographic algorithm uses public and private keys