RSAC 2024 Review: AI & Data Governance Priorities
Get our take on the RSA 2024 conference where we review some of the major topics covered such as AI and data governance.
RSA is a public-key cryptographic algorithm used for key exchange, digital signatures, and protecting communications through asymmetric encryption.
Search across headline titles and summaries.
Background for this topic.
RSA is an asymmetric (public-key) cryptosystem, rather than the security conference that also uses the name. It uses mathematically related public and private keys: the public key can encrypt data for the holder of the private key, while the private key can create signatures that the public key verifies. Systems commonly use RSA to protect a symmetric session key or sign certificates and software, not to encrypt large amounts of data. Its security relies on the difficulty of factoring large numbers.
Safe deployment requires standardized schemes such as RSA-OAEP for encryption and RSA-PSS for signatures, suitable key sizes, protected private keys, and maintained cryptographic libraries. Textbook RSA and obsolete or incorrectly implemented padding can enable attacks even when the underlying mathematics is sound. A stolen private key can expose protected keys or invalidate trust, so key access, rotation, certificate revocation, and recovery procedures matter. RSA is also not expected to withstand a sufficiently capable quantum computer; organizations protecting long-lived secrets or trust anchors should account for migration planning.
Weekly headline count for the current query.
Get our take on the RSA 2024 conference where we review some of the major topics covered such as AI and data governance.