Cryptographic protocols
What Are Cryptographic Protocols?
Cryptographic protocols are structured sequences of operations and message exchanges that use cryptographic primitives, such as ciphers, hash functions, and digital signatures, to achieve security goals between two or more communicating parties. A protocol specifies which algorithms to apply, the precise order of messages, the data structures carried, and the conditions each party must verify before proceeding. This coordination layer is what transforms raw cryptographic algorithms into practical security services such as confidentiality, integrity, authentication, and key agreement.
The field draws on applied cryptography, formal verification methods, and network protocol design. Cryptographic protocols are distinct from cryptographic algorithms in the same way that a contract differs from the language it is written in: a flawed protocol can make a system insecure even when every underlying algorithm is sound. Security proofs for protocols are typically conducted in formalized models such as the Dolev-Yao model, which characterizes what a network-level adversary can intercept and replay.
Key Exchange and Agreement
Key exchange protocols allow two parties with no prior shared secret to establish one over an open channel. The Diffie-Hellman key exchange, introduced in 1976, is the foundational example: each party contributes an ephemeral value, combines it with the other party's contribution using modular exponentiation, and arrives at the same shared secret without it ever appearing in the channel. Elliptic-curve Diffie-Hellman (ECDH) achieves equivalent security with smaller key sizes by performing analogous operations in elliptic-curve groups. IETF RFC 8446, defining TLS 1.3, mandates forward secrecy by requiring ephemeral (EC)DHE key exchange for all handshakes, meaning compromise of a server's long-term key cannot retroactively decrypt past sessions. Forward secrecy is now considered a baseline requirement for secure communication protocol design.
Authentication and Digital Signatures
Authentication protocols establish that a communicating party is who it claims to be, rather than a network-level impersonator. Certificate-based authentication binds a public key to an identity through a digital certificate issued by a trusted certificate authority (CA) under the X.509 standard. During a TLS handshake, the server presents its certificate, and the client verifies the certificate chain against a set of trusted root CAs. NIST FIPS 186-5, the Digital Signature Standard, specifies approved signature algorithms, including RSA, ECDSA (Elliptic Curve Digital Signature Algorithm), and EdDSA, that authentication protocols are expected to use. HMAC-based challenge-response schemes provide entity authentication without certificates, relying instead on a pre-shared key.
Secure Communication Protocols
Higher-level cryptographic protocols compose key exchange and authentication into complete security channels. TLS (Transport Layer Security), standardized by the IETF, is the dominant protocol for securing web, email, and API traffic. Its handshake establishes a session key; subsequent records are encrypted and authenticated using symmetric cipher suites such as AES-GCM or ChaCha20-Poly1305. The NIST guidelines on key management (SP 800-57) establish criteria for algorithm selection, key lengths, and lifecycle management that inform how protocols are configured in practice. IPsec secures network-layer traffic through Authentication Header (AH) and Encapsulating Security Payload (ESP) sub-protocols; SSH protects interactive remote sessions with a similar handshake-then-channel structure. Protocol negotiation between peers typically involves an initial cipher suite advertisement so that both sides can agree on the strongest mutually supported configuration.
Applications
Cryptographic protocols have applications in a range of fields, including:
- Secure web browsing, email, and API communication via TLS
- Virtual private networks (VPNs) using IPsec or WireGuard
- Remote system administration and file transfer via SSH
- Wireless network security under IEEE 802.11i (WPA2/WPA3)
- Electronic voting systems and secure multiparty computation
- Blockchain transaction signing and consensus messaging