Public key encryption

Public key encryption is a cryptographic system that uses two keys - a public key that is potentially known to everyone and a related private key that is known only to one party in an exchange of information.

The private and public keys used for public key encryption are related to each other in such a way that:

Knowledge of a public key does not guarantee the identity of the owner of the corresponding private key, and so encryption of information with a public key cannot, on its own, prevent encrypted information falling into the wrong hands. Before a public key can be safely used to encrypt or decrypt information, the identity of the holder of the private key must be assured. This assurance is provided by a digital certificate which binds the public key to the identity of the private key's owner.