Incryptography,ciphertext orcyphertext is the result ofencryption performed onplaintext using an algorithm, called acipher.^[1] Ciphertext is also known as encrypted or encoded information because it contains a form of the original plaintext that is unreadable by a human or computer without the proper cipher to decrypt it. This process prevents the loss of sensitive information via hacking.Decryption, the inverse of encryption, is the process of turning ciphertext into readable plaintext. Ciphertext is not to be confused withcodetext, because the latter is a result of a code, not a cipher.

Let${\displaystyle m}$ be the plaintext message that Alice wants to secretly transmit to Bob and let${\displaystyle E_k}$ be the encryption cipher, where${\displaystyle {}_k}$ is acryptographic key. Alice must first transform the plaintext into ciphertext,${\displaystyle c}$, in order to securely send the message to Bob, as follows:

${\displaystyle c=E_k(m).}$^[2]

In a symmetric-key system, Bob knows Alice's encryption key. Once the message is encrypted, Alice can safely transmit it to Bob (assuming no one else knows the key). In order to read Alice's message, Bob must decrypt the ciphertext using${\displaystyle {E_k}^{-1}}$ which is known as the decryption cipher,${\displaystyle D_k:}$

${\displaystyle D_k(c)=D_k(E_k(m))=m.}$^[2]

Alternatively, in a non-symmetric key system, everyone, not just Alice and Bob, knows the encryption key; but the decryption key cannot be inferred from the encryption key. Only Bob knows the decryption key${\displaystyle D_k,}$ and decryption proceeds as

${\displaystyle D_k(c)=m.}$

Thehistory of cryptography began thousands of years ago. Cryptography uses a variety of different types of encryption. Earlier algorithms were performed by hand and are substantially different from modernalgorithms, which are generally executed by a machine.

Historical pen and paper ciphers used in the past are sometimes known asclassical ciphers. They include:

• Substitution cipher: the units of plaintext are replaced with ciphertext (e.g.,Caesar cipher andone-time pad)
  • Polyalphabetic substitution cipher: a substitution cipher using multiple substitution alphabets (e.g.,Vigenère cipher andEnigma machine)
  • Polygraphic substitution cipher: the unit of substitution is a sequence of two or more letters rather than just one (e.g.,Playfair cipher)
• Transposition cipher: the ciphertext is apermutation of the plaintext (e.g.,rail fence cipher)

Historical ciphers are not generally used as a standalone encryption technique because they are quite easy to crack. Many of the classical ciphers, with the exception of the one-time pad, can be cracked usingbrute force.

Modern ciphers are more secure than classical ciphers and are designed to withstand a wide range of attacks. An attacker should not be able to find the key used in a modern cipher, even if they know any specifics about the plaintext and its corresponding ciphertext. Modern encryption methods can be divided into the following categories:

• Private-key cryptography (symmetric key algorithm): one shared key is used for encryption and decryption
• Public-key cryptography (asymmetric key algorithm): two different keys are used for encryption and decryption

In a symmetric key algorithm (e.g.,DES,AES), the sender and receiver have a shared key established in advance: the sender uses the shared key to perform encryption; the receiver uses the shared key to perform decryption. Symmetric key algorithms can either beblock ciphers orstream ciphers. Block ciphers operate on fixed-length groups of bits, called blocks, with an unvarying transformation. Stream ciphers encrypt plaintext digits one at a time on a continuous stream of data, with the transformation of successive digits varying during the encryption process.

In an asymmetric key algorithm (e.g.,RSA), there are two different keys: apublic key and aprivate key. Thepublic key is published, thereby allowing any sender to perform encryption. Theprivate key is kept secret by the receiver, thereby allowing only the receiver to correctly perform decryption.

Cryptanalysis (also referred to as codebreaking orcracking the code) is the study of applying various methodologies to obtain the meaning of encrypted information, without having access to the cipher required to correctly decrypt the information. This typically involves gaining an understanding of the system design and determining the cipher.

Cryptanalysts can follow one or moreattack models to crack a cipher, depending upon what information is available and the type of cipher being analyzed. Ciphertext is generally the most easily obtained part of acryptosystem and therefore is an important part of cryptanalysis.

• Ciphertext-only: the cryptanalyst has access only to a collection of ciphertexts or code texts. This is the weakest attack model because the cryptanalyst has limited information. Modern ciphers rarely fail under this attack.^[3]
• Known-plaintext: the attacker has a set of ciphertexts to which they know the corresponding plaintext
• Chosen-plaintext attack: the attacker can obtain the ciphertexts corresponding to an arbitrary set of plaintexts of their own choosing
  • Batch chosen-plaintext attack: where the cryptanalyst chooses all plaintexts before any of them are encrypted. This is often the meaning of an unqualified use of "chosen-plaintext attack".
  • Adaptive chosen-plaintext attack: where the cryptanalyst makes a series of interactive queries, choosing subsequent plaintexts based on the information from the previous encryptions.
• Chosen-ciphertext attack: the attacker can obtain the plaintexts corresponding to an arbitrary set of ciphertexts of their own choosing
  • Adaptive chosen-ciphertext attack
  • Indifferent chosen-ciphertext attack
• Related-key attack: similar to a chosen-plaintext attack, except the attacker can obtain ciphertexts encrypted under two different keys. The keys are unknown, but the relationship between them is known (e.g., two keys that differ in the one bit).

• TheBabington Plot ciphers
• TheShugborough inscription
• TheZimmermann Telegram
• The Magic Words are Squeamish Ossifrage
• Thecryptogram in "The Gold-Bug"
• Beale ciphers
• Kryptos
• Zodiac Killer ciphers

• Bibliography of cryptography
• Cryptographic hash function
• Frequency analysis
• RED/BLACK concept

• The dictionary definition ofciphertext at Wiktionary
• Media related toCiphertexts at Wikimedia Commons
• Helen Fouché Gaines, “Cryptanalysis”, 1939, Dover.ISBN 0-486-20097-3
• David Kahn,The Codebreakers - The Story of Secret Writing (ISBN 0-684-83130-9) (1967)
• Abraham Sinkov,Elementary Cryptanalysis: A Mathematical Approach, Mathematical Association of America, 1968.ISBN 0-88385-622-0

• Cryptography

• CS1 maint: multiple names: authors list
• Articles with short description
• Short description matches Wikidata
• Commons category link from Wikidata