Skip to content
Fast-turnaround security assessments available — 10+ years development & security experienceGet started
Back to Glossary
Glossary2 min read

Cipher

An algorithm used to encrypt and decrypt data, transforming readable text into an unreadable format and back.

A cipher is a mathematical algorithm used to transform readable data (plaintext) into an unreadable format (ciphertext) and reverse the process. Ciphers are the building blocks of encryption, providing the computational framework that makes secure communication and data storage possible. The security of a cipher depends on the algorithm's mathematical properties and the secrecy of the key used to perform the transformation.

How It Works

Ciphers fall into two main categories. Symmetric ciphers use the same key for both encryption and decryption. AES (Advanced Encryption Standard) is the most widely used symmetric cipher, processing data in fixed-size blocks. Symmetric ciphers are fast and efficient, making them suitable for encrypting large volumes of data, but they require both parties to securely share the key in advance.

Asymmetric ciphers (public-key ciphers) use a pair of mathematically related keys: a public key for encryption and a private key for decryption. RSA and elliptic curve cryptography (ECC) are common asymmetric ciphers. Anyone can encrypt data with the public key, but only the holder of the private key can decrypt it. Asymmetric ciphers solve the key distribution problem but are computationally slower than symmetric ciphers. In practice, most secure communications use asymmetric ciphers to exchange a symmetric key, then use the symmetric cipher for the actual data encryption.

Stream ciphers encrypt data one bit or byte at a time, suitable for real-time communications. Block ciphers encrypt fixed-size blocks of data, requiring modes of operation (like CBC, GCM, or CTR) to handle data larger than a single block. The choice of mode significantly affects security: some modes provide only confidentiality, while others also provide integrity verification.

Why It Matters

Cipher selection directly impacts an application's security posture. Using deprecated ciphers like DES, RC4, or export-grade ciphers leaves encrypted data vulnerable. Security assessments evaluate cipher configurations in TLS setups, database encryption, and application-level cryptography to ensure that only strong, current cipher suites are in use and that they are implemented correctly.

Need your application tested? Get in touch.

Related terms

AES (Advanced Encryption Standard)CryptographyDecryption

Need your application tested?

We find these vulnerabilities in real applications every day.

Request an Assessment